NewAxiomNewAxiom

Security baseline overview

This page summarizes the current Phase 1 security baseline in plain language for teams evaluating NewAxiom.

Phase 1 controls in place

Workspace authorization
Protected API routes and resource lookups enforce workspace-scoped authorization server-side to reduce cross-workspace access risk.
Role-based access
Workspace roles (owner, admin, manager, analyst, viewer) are used to scope operational access by responsibility.
Connector secret protection
Connector credentials use encrypted-at-rest storage and are masked from API responses and application surfaces.
Upload and export hardening
Upload, import, export, and internal/debug paths use stricter access checks and authorization enforcement.
Security audit logging
High-risk operations and failed authorization checks are recorded for traceability and incident review.
Sanitized production errors
API and UI production errors are normalized to avoid exposing sensitive internal implementation details.
Scope note
This is a baseline summary of implemented controls. It does not claim certifications or full security completeness.
View full security page
Join early access
Tell us about your pricing workflow and we'll follow up with practical next steps.
Need a security review call?
We can walk through the current baseline and how it maps to your pricing workflow requirements.
Book a callSee solutions