Security

Your data is secure by design

Waaiy's multi-tenant architecture isolates every customer's data from the others. Authentication, authorization, and auditing are built into every layer.

Security visual

Tenant Isolation

Every query is scoped by website. One tenant can never access another tenant's data.

Key-Based API

Every API request is verified with the trio of public/private key and user key.

Two-Factor Authentication

2FA with Google Authenticator; an extra layer of protection on panel logins.

Audit Log

All content changes are recorded with who/when/what details and can be reverted.

Role & Permission Management

Fine-grained role-based access control (RBAC) on a per-website basis.

Password Policy

Strong password rules and secure password storage (hashing).

KVKK-Compliant Approach

Transparency and user rights are upheld in the processing of personal data.

reCAPTCHA Protection

Sign-up and login forms are protected against bot attacks.

Compliance & transparency

Security is not a feature, it is our foundational approach. Our infrastructure is built on the principles of auditability and data ownership.

  • Isolation tested against cross-tenant data leakage
  • An immutable audit log for every change
  • Data processing aligned with KVKK/GDPR principles
  • Export your data via the API whenever you want
Compliance visual