Security Overview

SolArch OS designs SolArch OS with security appropriate to a multi-tenant SaaS platform handling business and customer data for solar installers.

Data in transit is protected with TLS. Data at rest is encrypted using industry-standard mechanisms provided by our cloud infrastructure partners.

Role-based access within customer workspaces limits what each user can view or change. Platform administration is restricted to authorised personnel with least-privilege access and audit logging.

Production databases and object storage are backed up on a regular schedule. Recovery procedures are tested periodically. Retention aligns with platform retention policies configured by Super Admin where applicable.

Core hosting and data services are provided by established cloud vendors listed on our Subprocessor List. We review vendor security posture and contractual commitments.

We maintain incident response procedures including detection, containment, remediation, and customer notification for breaches affecting personal data as required by law and our DPA.

Report concerns to support@solarchos.com.