Back to app home

Trust and legal

Security And Privacy Overview

A practical summary of the controls AlliedSpace uses to protect client workflows.

Last updated: 19 June 2026

Encryption style

AlliedSpace uses managed hosting and storage providers that encrypt traffic in transit with HTTPS/TLS and encrypt stored data at the platform layer. Uploaded documents are kept in private Supabase Storage, not public static assets.

Authentication and access control

The app uses Supabase Auth, required authenticator MFA for workspace users, a 30-minute idle sign-out, organisation-scoped data, database-level Row Level Security, and server/database access helpers. Practitioners are limited by role and client assignment, while organisation admins have broader access inside their organisation.

Team invites now include an access notice so admins are reminded to invite only authorised staff, default to practitioner access, and remove access when it is no longer needed.

Documents

Uploaded documents are stored privately and accessed through app-mediated download routes. Sensitive documents are not public static assets.

Private storage policies use the signed-in user and active organisation/client access to block guessed paths, wrong-organisation folders, unauthenticated access, malformed paths, and uploads into another organisation's client path.

Activity logs

Important workflows create activity log events. Client workspace views and document preview/downloads create safe access events with actor, organisation, client, document ID where relevant, action, timestamp, and mode. Log metadata avoids document names, case notes, AI prompts, and file contents.

Backups and recovery

Supabase provides database backups for the Sydney project. Uploaded document objects are backed up separately to private Cloudflare R2 according to the document backup process. Current recovery coverage is documented through the database backup, document backup, and restore-drill runbooks.

A full database restore can affect all workspaces, so it is reserved for serious platform-level recovery. For an individual provider or client record mistake, the safer target process is to restore into a temporary recovery environment or use controlled selective recovery, then apply only the reviewed records back to production.

Point-in-time recovery is tracked as a scale and launch-readiness decision. The current recovery posture is reviewed through the owner Trust tasks instead of being described as a certification or guarantee.

Subprocessors and AI

Current subprocessors include Supabase, Vercel, Resend for email delivery, Stripe for subscription billing, Cloudflare, OpenAI for optional voice transcription and AI SOAP drafting, and Google Sheets for provider contact and mailing-list management. Voice transcription sends temporary audio for speech-to-text conversion, while AI drafting sends prepared case-note content and limited session context for the SOAP workflow. These workflows use rate limits, human review, and subprocessor records documented for the current app.

Monitoring and abuse controls

Sensitive and expensive workflows use rate limits. Client error reporting is same-origin checked, size-limited, rate-limited, and scrubbed before operational review.

Ongoing review

Security and privacy controls are reviewed as the platform changes. AlliedSpace keeps internal evidence records and review tasks so public trust claims stay tied to current app behaviour.

The AlliedSpace release process includes automated checks for route-level authorisation, tenant isolation, private storage isolation, service-role allowlisting, committed-secret scanning, and unsubscribe-secret validation.

Support contact

For support, privacy, security, or walkthrough enquiries, contact support@alliedspace.com.au.