Skip to content

Security, Privacy & Governance

This page describes the governance capabilities that help program hosts operate safely: role-based access control, privacy practices, and auditability.

Identity and access

  • Role-based access (RBAC): permissions aligned to roles such as admin, founder, mentor/coach, investor, and trainee.
  • Least privilege: users should only see what they need for their role.
  • Verification workflows: role-specific verification steps (where applicable).

Privacy and data handling

  • Tenant-scoped data: program data is owned and administered per tenant.
  • Configurable policy pages: publish privacy and terms relevant to your organization.
  • Export support: program hosts can export reporting outputs for funders/boards.

Auditability and oversight

  • Activity logging: operational tracking of important changes and actions.
  • Operational transparency: consistent, role-based workflows reduce “shadow processes”.

Admin best practices

  • Review user roles at the start of every cohort
  • Limit admin permissions to the smallest necessary group
  • Standardize assessment/report templates to improve comparability across cohorts