Your data is safe — and here's exactly how.
RCA data is sensitive: defects, deviations, who did what, and how you fixed it. RootWise is built so that data stays yours, stays isolated from every other company, and is protected at every layer — not as a marketing promise, but as how the system is engineered.
How we protect your data
Tenant isolation at the database
Every organization's data is walled off inside the database with PostgreSQL Row-Level Security. One customer physically cannot read another's investigations — the database enforces it on every single query. We back this with an automated test suite that actively attempts cross-tenant access and confirms it is blocked.
Encryption everywhere
All traffic is encrypted in transit with TLS. All stored data is encrypted at rest (AES-256) by our infrastructure. Evidence photos and files live in private storage and are only ever delivered through short-lived, signed links.
Sign in with Microsoft
Sign in with Microsoft or with email and password. With Microsoft sign-in your credentials go to Microsoft and are never seen by RootWise. Sessions are held in secure, HTTP-only cookies. (Per-organisation SSO federation is on our roadmap.)
Role-based access control
Six roles — owner, admin, site manager, department lead, member, viewer — so each person can see and do only what their job requires. Privileged actions (inviting, changing roles, deleting) run through least-privilege checks on the server.
Immutable audit trail
Every membership, role, and invite change is written to a tamper-evident, hash-chained audit log. Admins can review the full history, and entries can't be quietly altered or deleted after the fact.
Hardened before launch
The platform went through an extensive internal security review that specifically hardened tenant isolation, access control, and paid-content boundaries — closing issues before any customer data ever touched the system.
Your data, your control
You own it
Your investigations, evidence, and reports belong to you. We'll export your data, or delete it entirely, on request.
Never used to train AI
The coach is powered by Anthropic's Claude API. Under Anthropic's commercial terms, your content is not used to train AI models.
Compliant infrastructure
Runs on Supabase (on AWS), which is independently audited to SOC 2 Type II, and Vercel for hosting.
Infrastructure & subprocessors
The trusted providers that help us run RootWise, and what each one safeguards.
| Provider | Purpose | Safeguard |
|---|---|---|
| Supabase (AWS) | Database, authentication, file storage | SOC 2 Type II; encryption at rest |
| Vercel | Application hosting & CDN | TLS; DDoS protection |
| Microsoft Entra ID | Optional single sign-on | OAuth 2.0; credentials never seen by RootWise |
| Anthropic | AI coaching (Claude) | Content not used for model training |
Reliability
Your data is backed up automatically by our database provider, application errors are monitored continuously, and changes ship through automated checks that include security tests. If something looks wrong, we know quickly.
Responsible disclosure
Found a vulnerability? We want to hear from you. Email hello@rootwise.opexelevate.co.uk or reach us through the contact page. We'll respond promptly and keep you updated.
On our roadmap
We're committed to meeting enterprise requirements as we grow: formal SOC 2 certification, third-party penetration testing, and a signed Data Processing Agreement (DPA) available for enterprise customers on request.
Questions from your IT or security team?
We're happy to walk through our architecture, complete a security questionnaire, or provide a DPA. Read our Privacy Policy and Terms, or get in touch.
Talk to us