Audit Trail
Email Delivery Log
Your supporters trust you with their personal and payment information. We take that seriously — every feature below is included free, for every organization.
TOTP-based MFA with recovery codes. Protect admin accounts with a second factor that works with any authenticator app.
Sign in with Google, Facebook, LinkedIn, or Apple. Reduce password fatigue while maintaining security standards.
Four system roles (platform admin, org admin, staff, donor) plus custom roles. Database-driven permissions with 60-second cache. Multiple roles per user.
Payment provider credentials and sensitive configuration are encrypted at rest using Fernet symmetric encryption. Keys are never stored alongside data.
Every donation, every profile change, every role assignment, every login — logged with timestamp, user, and before/after values. Exportable for compliance.
Every database query is scoped by organization ID. There is no API call that can access another organization's data — by design, not by convention.