Role-Based Access
Scoped admin and analyst permissions with clear action boundaries.
Security
Enterprise controls for operational trust
Openleaf applies practical safeguards for access, transport, and operational traceability in production workflows.
Encrypted Transit
TLS-protected request flow for ingestion and reporting APIs.
Audit Trails
Timestamped activity records for submissions and generated outputs.
Least Privilege
Environment-aware controls and scoped service responsibilities.
Control categories
IdentityJWT-based session controls and access scoping.
DataEncrypted in transit with controlled handling workflows.
MonitoringOperational logs and diagnostic health visibility.
Control maturity trend
Tracked
Yes. During enterprise onboarding, we can share additional operational and controls documentation.
Yes. Openleaf maintains timestamped records for logs and report-generation events.
How security is handled in practice
AuthenticationRole-aware account access with token-based session controls.
AuthorizationScoped permissions for admin and analyst actions across workspaces.
TraceabilityTimestamped records for key operational and reporting events.
Response stages
Identify
Detect and classify abnormal behavior through monitoring controls.
Contain
Limit impact by isolating affected paths and preserving audit evidence.
Resolve
Apply fixes, validate recovery, and monitor for stability.
Review
Capture lessons and update controls to reduce repeat risk.