Security & Compliance
Facilwork protects customer, seller and marketplace data with industry-standard security controls. Full transparency for integrations with TikTok Shop, Shopee, AliExpress, Shein, Mercado Livre, Amazon and more.
Security at every layer of the platform
Technical and organisational controls that protect your multichannel operation end to end.
Access control
Role-based access control (RBAC) with least privilege, JWT authentication and per-tenant isolation. Every user only sees what their role allows.
Infrastructure security
Hosted on AWS (EC2, RDS PostgreSQL, S3) with tight security groups, managed backups and network isolation.
Data protection
Encryption in transit via TLS, multi-tenant isolation with dedicated schemas and logical segregation of every company's data.
Incident response
Documented process for detection, containment, investigation and notification, with defined timelines for communicating to affected customers.
Vulnerability management
Continuous dependency monitoring, timely security patching and code review before every deployment.
Endpoint security
Hardened corporate endpoints, controlled administrative access and activity monitoring across production environments.
Compliance & policies
Public documents and practices that underpin the trust of customers and partners.
Security documents
Download our security policies for your vendor assessment and compliance review.
Information Security Policy
Principles and controls that govern information security at Facilwork.
Access Control Policy
Rules for granting, reviewing and revoking access to systems and data.
Incident Response Policy
Process for detecting, responding to and communicating security incidents.
Data Protection Policy
How we protect personal data and comply with GDPR/LGPD.
Talk to our team
Security or privacy questions, or to report a vulnerability.