Security and compliance built into the foundation.
Enafeedback is designed for organizations where data isolation, identity governance, and audit integrity are non-negotiable — hospitals, financial institutions, multi-site enterprises.
Capabilities
Every security feature you need. None added later.
PostgreSQL Row-Level Security
Complete data isolation enforced at the database engine level. No cross-tenant data leakage even under application misconfiguration.
OIDC / SAML Identity
Enterprise identity via EnaCore Identity with PKCE flows. Module-scoped roles: feedback, hygiene, survey, cleaning, buildings, team, audit, platform owner.
HMAC-SHA256 Audit Chain
Append-only audit log with cryptographic integrity chaining per organization. Hash and chain verified on demand in the admin panel.
Encrypted Secrets at Rest
SMS provider credentials, webhook secrets, and session tokens encrypted using AES-GCM before storage in Redis.
Module-Scoped RBAC
Granular roles per module: Admin, Operations Lead, Field Supervisor. Plus platform-level Auditor and Owner roles for compliance surfaces.
Audit Retention Tiers
3 years on Starter, 5 years on Professional, 7 years on Enterprise. CSV export up to 5,000 rows with hash integrity verification.
Tartibga solingan ko'p ijarachi muhitlar uchun qurilgan. (tenant) (multi-tenant)
Xavfsizlik va muvofiqlik keyin qo'shiladigan modullar emas. Platformaning tuzilish xususiyatlari.
PostgreSQL qator darajasidagi xavfsizlik
RLS orqali ma'lumotlar bazasi darajasida to'liq ma'lumot izolyatsiyasi. Hech qanday tashkilot boshqasining ma'lumotlariga kira olmaydi — noto'g'ri sozlashda ham. Ixtiyoriy to'liq izolyatsiya.
OIDC identifikatsiya boshqaruvi
OIDC/SAML oqimlari bilan korporativ identifikatsiya. Modul bo'yicha rollar: mulohaza, gigiena, so'rovnoma, binolar, jamoa, audit. Muvofiqlik yuzalari uchun platforma egasi roli.
HMAC-SHA256 audit zanjiri
Har bir administrator harakati HMAC-SHA256 yaxlitlik zanjiri bilan tashkilot bo'yicha faqat qo'shishga mo'ljallangan audit jurnaliga yoziladi. Hash va zanjir so'rov bo'yicha tekshiriladi.
Global ma'lumot xavfsizligi
Aloqa yig'ish ixtiyoriy. Aniq rozilik yuborishda qayd etiladi. Moslashuvchan saqlash muddatlari. Shaxsiy ma'lumotlar AI qayta ishlashdan oldin maskalanadi.
Enterprise Architecture FAQ
Korporativ infratuzilma. Kompromiss yo'q.
PostgreSQL RLS
Ma'lumotlar bazasi dvigatel darajasida ma'lumot izolyatsiyasi yoki ixtiyoriy to'liq izolyatsiya.
HMAC audit zanjiri
O'zgartirishga chidamli, tashkilot bo'yicha, faqat qo'shishga mo'ljallangan audit yozuvlari.
OIDC identifikatsiya
Sanoat standartlariga mos korporativ identifikatsiya va SSO.
Xalqaro standartlarga mos
Rozilik ustuvorligi bilan ma'lumot yig'ish, sozlanadigan saqlash.
Huawei OBS saqlash
Tashkilot bo'yicha ob'ekt saqlash, dam olish holatida shifrlash.
EnaSpace platformasi
EnaSpace Portal orqali o'z-o'ziga xizmat ko'rsatish, hisob-kitob va operatsiyalar.
Enafeedback ni o'z muhitingizda ko'ring.
Biz bilan bog'laning — o'rnatish, modullar va Enterprise sozlamalarni birgalikda ko'rib chiqamiz.