Security
Security controls for your Eazyle data.
Eazyle combines authentication, role-based access, product separation, HTTPS/TLS, monitoring, and managed infrastructure controls for financial data, employee records, client work, and business information.
Access is scoped
Roles, workspaces, and product areas limit what each team member can see.
MFA is available
Users can add two-factor authentication and sensitive actions can request MFA.
Sessions are visible
Security settings include session activity and trusted-device management.
Managed storage controls
Eazyle relies on managed database, file, and infrastructure providers that support protected storage for application data, files, and operational backups.
Encrypted transport
Connections between your browser and Eazyle use HTTPS/TLS. API calls, webhooks, and service communication are handled through encrypted channels.
Two-factor authentication
Users can enable two-factor authentication. Sensitive operations can require recent MFA verification where that extra check is configured.
Role-based access control
Permissions are scoped by role, workspace, and product. Team members only see what their role allows. Accountant access is separated from company access by design.
Session and device management
Eazyle tracks session activity and trusted-device state. Users can review and revoke sessions or remove trusted devices from security settings where enabled.
Privacy controls
Cookie consent, data export, account deletion, and retention-management areas are available to support privacy requests and operational recordkeeping.
Infrastructure
Built on monitored cloud infrastructure.
Eazyle uses managed infrastructure providers, app-level access controls, secret handling, audit records, and operational monitoring for the platform.
Runs on managed cloud services used by the app, including Supabase, Stripe, Sentry, PostHog, and related providers
Operational backups and recovery planning use managed platform controls
Application logs and audit records support review without exposing sensitive credentials
Sensitive exports and selected high-risk operations can require MFA verification
Environment secrets are managed outside source code
Access controls
Separate access for every product and role.
Eazyle separates access by product, workspace, and role so teams can control who sees finance, payroll, accountant, client, and customer data.
Finance, Payroll & HR, Media Suite, Production Suite, and Accountant each have separate sign-in paths
Customer Portal uses secure email-link authentication — no shared passwords
Accountant access is separated from company team access by design
Invitation-based onboarding ensures only authorized users join a workspace
Admin controls for team permissions, role assignment, and access review
Compliance and responsible disclosure
Eazyle provides controls that help businesses manage privacy and security obligations for financial, employee, client, and billing data. If you discover a security issue, please report it responsibly to support@eazyle.com.