Trust Center
Security and compliance documentation for SME fleet operators evaluating EnforceIQ Labs. Hypernest Innovations Limited · UK entity · Sheffield.
Security summary
- Tenant isolation via PostgreSQL row-level security on core tables
- Clerk SSO for authentication; optional SAML for enterprise fleets
- Stripe handles card data — EnforceIQ never stores PANs
- Append-only audit log with 7-year retention and monthly purge cron
- EU-region object storage for notice uploads (presigned POST)
- CSRF protection and rate limits on production API routes
Documentation
Privacy notice
How we process personal data for fleet and driver workflows.
Subprocessors
Clerk, Stripe, Neon, Resend, AWS — EU/UK hosting where available.
Fleet DPA template
Processor schedule for B2B fleet contracts — signed PDF on enterprise onboarding.
Records of processing (ROPA)
Article 30 register for GDPR accountability.
Breach response
Incident notification commitments under the fleet DPA.
Enterprise & SSO
Fleet workspaces use Clerk Organizations for team invites. Enterprise customers can enable SAML SSO (Okta, Azure AD, Google Workspace) through Clerk Enterprise — contact [email protected] for procurement packs, signed DPAs, and pen-test summaries.
SOC2-lite controls documented internally. Formal certification and third-party pen tests are scheduled before enterprise scale. Last updated May 2026.