Security & compliance posture
Tenant isolation, permission checks on every endpoint, and optional malware scanning before files touch storage.
- JWT auth with rotating refresh tokens
- Scoped document access: org, private, restricted + share tiers
- Pluggable malware scan (noop default, ClamAV optional)
- Audit log for member, role, and document events
Used by: Enterprise IT, Security review