Your org data, protected
Security isn't an afterthought at OrgPlan. It's built into every layer — from the database to the browser.
Row-Level Security
Every database query is scoped to the current user's organization using Postgres session variables. Data isolation is enforced at the database level, not just the application layer.
5-Level RBAC
Fine-grained role-based access control with five levels: Owner, Admin, Editor, Viewer, and Guest. Salary visibility is configurable per role and enforced server-side.
Transport & Headers
HSTS with 2-year max-age and preload. Content Security Policy with frame-ancestors 'none', base-uri 'self', and form-action 'self'. CORP set to same-origin.
Input Validation
Server-side length limits on all input fields, combined with client-side maxLength constraints. All data is validated before storage to prevent injection attacks.
GDPR Compliance
Organization owners can cascade-delete all org data at any time, including employees, scenarios, and invite links. Soft delete provides a 30-day recovery grace period before permanent removal.
Public Sharing Controls
Share links are read-only with salary data, email addresses, and start dates automatically stripped. Domain-wide guest access gives controlled visibility without exposing sensitive fields.
Built on trusted providers
- Hosting
- Vercel
- Database
- Neon Postgres
- Authentication
- Clerk
- Billing
- Stripe
- Monitoring
- Betterstack (status.orgplan.io)
- Health Check
- /api/health endpoint
- Security Scanning
- OWASP ZAP baseline (0 failures, 58 passes)
Found a vulnerability?
We take all reports seriously. Please email security@orgplan.io with details and we’ll respond within 48 hours.