SOC 2 · ISO 27001 · GDPR
Built for organisations that need GDPR compliance, audit trails, and self-host options — without giving up end-to-end encryption.
Guest → Member → Moderator → Admin → Owner. Permissions middleware enforces every action server-side.
30 audit-action types. SOC 2 + ISO 27001 mapped. Retention configurable per plan.
One-click data export. Right-to-erasure on demand. Subprocessor list public.
HMAC-SHA256 signed. 10 event types. Exponential-backoff retry, auto-disable after persistent failure.
Token bucket per endpoint. Multipliers for authenticated and enterprise tiers.
Run the entire Saj Link stack inside your VPC. Federation across self-hosted instances supported.
GDPR · SOC 2 (Type II in flight) · ISO 27001 alignment. Annual third-party penetration test.
TOTP. Active session list. Remote logout. Per-channel privacy overrides.
We'll walk you through deployment options, compliance posture, and pricing.