Security
How your tenant data is handled
Each customer gets a dedicated, isolated environment. Access Fabric reads Entra through Microsoft Graph and writes review decisions back through the same API — it does not replicate your directory.
- Operator sign-in Spot Suite OIDC via Microsoft Entra — passkeys, authenticator MFA, IdP federation
- Entra connection Separate admin-consented Graph application; least-privilege permissions
- Tenant isolation Dedicated Cloudflare Worker, D1 database, and storage per customer
- Data scope Tenant-scoped rows — no shared data between customers
- Data residency EU region, operated by Spot Cloud B.V.
- Graph write access Review decisions only — no standing write access beyond campaign actions
- Audit logging Operator actions and campaign decisions recorded with identity and timestamp
- Compliance posture Control mapping: ISO 27001 · DORA · GDPR
Questions about the architecture?
Book a 30-minute walkthrough with an engineer — tenant isolation, Graph permissions, and audit exports.