Login Start Free Trial

Start Free Trial

Discover

Use CasesSee how businesses are using Elevale to their advantage. ResourcesGuides, templates and tools for growth. App MarketplaceAccess integrations, tools and partner solutions. ArticlesInsights on strategy, performance and growth. CompareCompare Elevale with alternative platforms. RoadmapSee what we're building next on Elevale.

Features

View all featuresExplore every capability in the Elevale platform. Strategic DirectionDefine and align your business direction. OKR PlanningSet objectives and key results that drive progress. KPI TrackingMonitor performance with live KPI dashboards. Task ManagementConnect tasks to strategic priorities. AI Strategic AdvisorGet intelligent guidance on your strategy. Marketing IntelligenceSurface market signals that matter. ChatCollaborate with your team in real time. Process MapMap how work flows across your organisation. Docs & WikiCentralise knowledge and standard operating procedures. Certification PathwayBuild capability across your leadership team. Live DashboardsExecutive visibility when you need it.

About

About usLearn about Elevale and our mission. Elevale WikiDocumentation and platform guides. Trust CentreSecurity, privacy, and compliance documentation. System StatusCheck platform uptime and incidents. Refer-a-friendShare Elevale and earn rewards. Become a ResellerPartner with Elevale and grow with us. Contact UsGet in touch with our team.

Pricing Enterprise

Login Start Free Trial

← Back to Trust Centre Platform documentation

Security and data protection

Security and data protection

Authentication

Multi-factor authentication (email or authenticator app) required after signup
Privileged platform roles (super admin, agency admin) must use MFA
Password reset and session management via Supabase Auth

Encryption

In transit: TLS 1.2+ for all connections
At rest: Supabase encrypted storage; OAuth tokens encrypted server-side
Secrets: API keys stored as hashes; no client-side token encryption

Access control

Row Level Security (RLS) on all tenant data
Role-based access: system, organization, and workspace levels
Custom workspace roles with granular permissions

Key rotation

API keys and OAuth encryption keys are rotated on a documented schedule. Operations team follows the internal key rotation checklist.

Disaster recovery

Supabase point-in-time recovery and Fly.io redeployment. Target RTO: 4 hours; RPO: 1 hour for database.