No admin action auto-executes. Every elevated and critical action requires explicit human approval through a verified channel.

Standard (automated), Elevated (senior tech approval), Critical (franchise owner + MFA + typed confirmation). Color-coded across every screen.

Credentials delivered via one-time encrypted links with 15-minute expiry and automatic destruction after access.

Every action logged to local database, Autotask ticket notes, and IT Glue documentation — simultaneously. Nothing is lost.

SPF/DKIM/DMARC validation, sender verification, content analysis, injection detection, and risk scoring before any workflow triggers.

Ollama runs on-premise. No ticket data sent to cloud LLM providers. Your client data stays on your infrastructure.

PostgreSQL Row-Level Security provides hard database isolation. Each franchise's data is cryptographically separated.

All API requests are signed with HMAC-SHA256 to prevent tampering and replay attacks.