AES-256 encryption at rest
All stored data is encrypted with AES-256 — the standard used by banking and government systems.
Enterprise trust
Enterprise-grade by architecture, not by checkbox
Security, compliance, and reliability aren’t features we bolted on after launch. They’re the foundation every Access product is built on — from the first commit.
Security architecture
Six layers of enterprise security
TLS 1.3 in transit
Every byte between client and server is encrypted with TLS 1.3, the current industry-leading standard.
Row-level database security
Access is enforced at the row level — users only read and write records assigned to their role and account.
Role-based access controls
Granular permission scoping at team, brand, and feature levels, with admin, agent, and read-only roles.
Tamper-evident audit logs
Full audit trail on data access, record changes, and permission updates — accessible to admins.
72-hour breach notification
In a confirmed breach, affected enterprise clients are notified within 72 hours with a full incident report.
Infrastructure posture
Built on trusted, enterprise-grade infrastructure
Database
Supabase (PostgreSQL)
Hosted on AWS infrastructure
CDN & hosting
Vercel Edge Network
Global edge deployment
WhatsApp API
Meta Business Platform
Official Business Partner
Payments
Razorpay + Stripe
PCI-compliant processors
Monitoring
Real-time uptime tracking
99.9% uptime target
Backups
Daily automated backups
30-day retention policy
Compliance & policy
Responsible legal framing
We make only the compliance claims we can substantiate. The language below reflects our actual architecture — not aspirational checkboxes.
GDPR alignment
Data processing is designed with GDPR principles; Enterprise clients can request a DPA.
India IT Act 2000
Handling practices comply with India’s Information Technology Act 2000 and amendments.
DPDP Act 2023
India’s Digital Personal Data Protection Act is factored into our data architecture.
Meta Business Policy
Full compliance with WhatsApp Business Policy and Commercial Messaging Guidelines.
Zero unofficial APIs
No grey-market WhatsApp libraries or undocumented APIs — zero ban risk for your business.
Enterprise onboarding
Guided deployment in 14 days
Enterprise clients receive a structured onboarding program designed for full adoption within two weeks.
Days 1–2
Data migration & setup
CRM import, field mapping, team configuration, and integrations.
Days 3–7
Team training
Role-specific sessions for admins, agents, and managers — tailored to your workflow.
Days 8–12
Live monitoring
Your CSM watches pipeline activity and flags any configuration issues.
Day 14
Handover & support
Formal handover with documentation; a dedicated support channel stays active.
99.9% uptime target
Infrastructure designed and monitored for 99.9% availability. Formal SLA available for Enterprise.
Named support model
A named success manager with defined response SLAs — priority support within 12 business hours.
DPA available
A Data Processing Agreement for clients requiring GDPR or DPDP Act documentation.
Speak to our enterprise team
For custom integrations, DPA requests, and multi-team rollouts, our team will scope the right solution for your organisation.