Security Overview
Read-only workload connectors, strict tenant isolation, signed callbacks, validated webhooks, and deterministic event processing.
Trust Center
ChangeWitness publishes its permission model, data flow, hosting placement, retention defaults, processor exceptions, reliability targets, and legal drafts in one public location.
Architecture
01
Read audit records or receive validated change notifications.
02
Persist only the least data required for supported outcomes.
03
Evaluate deterministic, versioned rules against canonical events.
04
Route the same correlated change to configured destinations.
Trust Documents
Core providers, processing purposes, regions, and disclosed exceptions.
Frankfurt placement, global delivery behavior, backups, logs, and transfers.
Draft controller and processor terms pending qualified legal review.
Stored data, raw payload handling, retention, rights, and deletion.
Service, plans, acceptable use, termination, and draft legal terms.
Product-controlled SLOs and current status-page rollout.
Security Summary
Read-only workload connectors, strict tenant isolation, signed callbacks, validated webhooks, and deterministic event processing.
Separate Entra, Intune, and Teams connector applications with workload-specific Microsoft Graph application permissions.
Plan-based normalized history, bounded deduplication keys, 365-day product audit logs, and a 24-hour maximum for dead-letter raw payloads.
TLS 1.2 or newer, encryption at rest, certificate-based connector authentication, and envelope encryption for destination secrets.
Provider-managed backup behavior is documented with regions still requiring final production confirmation.
Detection, containment, communication, recovery, and post-incident review procedures are part of the operational launch gate.
Report suspected vulnerabilities to [SECURITY EMAIL]. The security mailbox is pending setup confirmation.
Durable queueing, idempotent processing, provider health monitoring, and documented recovery procedures support continuity.
No security certification is claimed. Any future certification will be named only after it is achieved.
A public product and trust change log is planned for launch. [PENDING PRODUCT SETUP]