SOC 2 · ISO 27001 · GDPR
Built for organisations that need GDPR compliance, audit trails, and self-host options — without giving up end-to-end encryption.
Guest → Member → Moderator → Admin → Owner. Permissions middleware enforces every action server-side.
30 audit-action types. SOC 2 + ISO 27001 mapped. Retention configurable per plan.
One-click data export. Right-to-erasure on demand. Subprocessor list public.
HMAC-SHA256 signed. 10 event types. Reliable delivery with backoff and circuit-breaker.
Per-endpoint limits with tiered multipliers for authenticated and enterprise tiers.
Run the entire Saj Link stack inside your VPC. Federation across self-hosted instances supported.
GDPR · SOC 2 Type II (in progress) · ISO 27001 alignment · FedRAMP pathway. Third-party penetration testing (planned).
TOTP. Active session list. Remote logout. Per-channel privacy overrides.
Deployment options, compliance posture, and pricing — on a call.