Skip to content
EnsmblOS

Security

What we do so you can sleep at night.

EnsmblOS is built for the Indian regulatory landscape. This page summarises the controls. For a deeper briefing, ask sales for our security one-pager.

Security & compliance

Compliance, before you ask.

Indian buyers scan for these. We put them on the home page so you don’t have to dig.

0-bit

AES encryption on PII at rest

0.9%

monthly uptime target

0

cross-tenant data incidents to date

0h

breach-notification commitment

DPDPA 2023 ready

Explicit consent records, right-to-delete, data portability. Penalties up to ₹250 crore make compliance someone else’s problem — ours.

AES-256 PII vault

Customer phone, email and name are encrypted at the database layer with keys held in a managed vault. Even our staff cannot read them in plain text.

Mumbai data residency

All data stays in ap-south-1 (Mumbai). No cross-border transfers. ISO-27001-certified infrastructure under the hood.

GST + 7-year audit trail

GST-compliant invoices. Order and transaction data retained for seven years per Indian tax requirements.

Tenant-isolated by design

Every database row is scoped by location_id with row-level-security policies. Cross-tenant access is impossible by construction.

Every action audit-logged

Refunds, role changes, exports — written to an append-only log with operator identity, IP and timestamp. Exportable on request.

Tenant isolation

Every database table that holds tenant data is scoped by a location_id (or its company ancestor) and protected by row-level security policies. Cross-tenant reads are impossible by design.

PII encryption

Customer phone, email and name are encrypted at write time using AES-256 keys stored in a managed vault. Only privileged service roles can decrypt for legitimate operations.

Payment data

We do not store card numbers, CVVs or UPI PINs. PhonePe handles all PCI-DSS scope. Per-location merchant salts are encrypted by an in-database trigger and decrypted only by privileged edge functions.

Backups & retention

Daily encrypted backups in the same region (Mumbai). Order and transaction data retained seven years for Indian tax compliance; OTPs and rate-limit records are auto-purged daily.

Access controls

Role-based access at the dashboard level. One admin per company (DB-enforced unique index). Sub-owners can be restricted to specific outlets. Every action is audit-logged.

Vulnerability handling

Report security issues to security@ensmbl.in. We triage within one business day.

WhatsApp us