Data storage
Postgres (Neon) — tenant-isolated, row-level security enforced
Security
What security and finance reviewers find when they look under the hood.
You can evaluate in shadow mode, run simulation on your last 90 days, and keep live controls off until you are ready.
Architecture
Simple architecture, legible boundaries
Every event flows through one decision plane before any money moves.
Stripe Events
Refund Requests
Policy Rules
Role Context
↓
AXIRU DECISION PLANE
Replay + Simulation
Policy Evaluation
Approval Routing
Execution Controls
↓
Approved / Blocked
Immutable Ledger
Audit Exports
Technical controls
What the product enforces — not what we claim to certify.
Key implementation details for technical and security reviewers.
Encryption at rest
AES-256 via Neon managed infrastructure
Encryption in transit
TLS 1.2+ on all connections
Access controls
Role-based — approval permissions scoped per workspace
Webhooks
Stripe signature verified on every inbound event
Decision history
Append-only ledger — no record can be modified after creation
Notification delivery
Environment-scoped — no cross-tenant data in transit
Stripe connection
Read-only webhook scope during shadow mode — no write access until enforcement is enabled
Compliance
Where we are on compliance certification.
SOC 2 Type II — in progress
Axiru is currently pursuing SOC 2 Type II certification. Design partners receive our security architecture review and a draft controls narrative before audit scope is finalized.
If your procurement process requires specific compliance evidence, contact us — we will provide what is available and be direct about what is not yet complete.
Contact us about compliance →Next step
Evaluate safely first
Start free in shadow mode, upload your last 90 days, and run simulation before enabling live behavior.
Start in shadow mode first. Move to live enforcement later.