Sign in Talk to sales
Features Pricing About Contact Blog
Sign in Talk to sales
Security

Your data security is our priority

GlobalSupply Techno is built with enterprise-grade security to protect your warehouse, inventory, and order data.

🔒

Encryption at Rest & in Transit

All data is encrypted using AES-256 at rest and TLS 1.2+ in transit. Database backups are encrypted with the same standards.

🌐

Infrastructure

Hosted on AWS ap-south-1 (Mumbai) with auto-scaling, load balancing, and daily automated backups retained for 30 days.

👥

Multi-Tenant Isolation

Every tenant's data is isolated at the database level. No tenant can access another tenant's data, ever.

🛡

Access Controls

Role-based access control (RBAC) with granular permissions. Platform owners, admins, warehouse managers, pickers, and packers each have distinct access.

🔐

Authentication

JWT-based session tokens with configurable expiry. Optional two-factor authentication (TOTP) for additional security.

📈

Audit Logging

Every critical action is logged with timestamps, user identity, and IP address. Full audit trail for compliance and investigations.

Data Protection

  • Database backups are taken daily and retained for 30 days.
  • Backups are stored in a separate AWS S3 bucket with server-side encryption.
  • No customer data is used for training, analytics, or shared with third parties.
  • All API communication is authenticated and authorized per request.

Access Controls

  • Role-based access control (RBAC) with five distinct roles: Platform Admin, Super Admin, Warehouse Manager, Packer, Picker.
  • Menu-level access control allows platform owners to restrict features per company.
  • Warehouse-level data isolation ensures users only see data for their assigned facility.
  • API keys are masked in all responses and never stored in plaintext.

Incident Response

We maintain an incident response plan that includes:

  • Immediate detection and containment of security incidents.
  • Root cause analysis and remediation.
  • Notification to affected customers within 72 hours of a confirmed breach.
  • Post-incident review and security improvements.

Compliance

  • Data stored in AWS ap-south-1 (Mumbai), India. No cross-border data transfer.
  • DPDP Act (Digital Personal Data Protection Act) ready.
  • GST e-invoicing integration compliant with IRP (Invoice Registration Portal) standards.
  • All data at rest encrypted with AES-256. All data in transit encrypted with TLS 1.2+.

Reporting a Vulnerability

If you believe you have found a security vulnerability in our platform, please report it to security@globalsupply.in. We take all reports seriously and will respond within 48 hours.