Core Features
Custom domains • Theme engine • Logo injection
RBAC • Self-service • Scoped views
Real-time analytics • Export • Billing hooks
Architecture
Tenant Isolation (IsoCore)
Every client's data is isolated at the database, cache, and AI layer. Row-level security policies enforce boundaries even if application code has bugs.
Stack: PostgreSQL RLS • Namespaced Redis • Scoped vector stores
Branding Engine
Dynamic theme injection at the edge. Custom CSS variables, logo replacement, and domain mapping without redeployment.
Stack: Edge middleware • CSS variables • DNS CNAME mapping
Audit Pipeline
Every action logged to immutable storage with tenant context. Exportable reports that satisfy SOC 2, HIPAA, and SEC audit requirements.
Stack: Append-only logs • S3 archival • Compliance exports
How It Works
Configure your logo, colors, domain, and email templates
We provision isolated infrastructure and tenant configuration
Add your clients with role-based access and usage limits
Monitor usage, manage billing, and scale with your client base
Technical Specifications
Platform
- Next.js frontend with SSR
- Edge middleware for tenant routing
- PostgreSQL with row-level security
- Redis for session and cache isolation
Branding
- Custom domain support (CNAME)
- Dynamic theme injection
- Logo and favicon override
- Email template customization
Compliance
- Immutable audit logging
- SOC 2 ready infrastructure
- HIPAA-compliant data handling
- Role-based access control
Use Cases
MSP AI Hub
Offer private AI to your client base under your own brand. Each client gets isolated access with full usage tracking and compliance logging.
Client Operations Portal
Centralize ticketing, asset management, and SLA reporting in one branded portal. Give clients self-service without giving up control.
Compliance Dashboard
Deliver audit-ready reporting to clients in regulated industries. HIPAA, SOC 2, and SEC compliance frameworks built into the platform.