Ownablee

Security

Last updated: May 20, 2026

Infrastructure

  • Built on Lovable Cloud (Supabase) — SOC 2 Type II infrastructure.
  • Application code runs on Cloudflare's edge network.
  • All traffic is TLS 1.3.

Data isolation

  • Every table uses Postgres Row-Level Security scoped to workspace membership.
  • Connector tokens are stored in encrypted secret storage, never in application tables.
  • Service-role keys never touch the browser.

Authentication

  • Email + Google OAuth supported today.
  • MFA available on all plans.
  • SSO / SAML available on Enterprise.

Action approvals

High-impact actions (sending external email, posting publicly, spending) hit the approvals queue by default. You configure thresholds per Owner.

Backups

  • Point-in-time recovery up to 7 days.
  • Daily snapshots retained for 30 days.

Responsible disclosure

Found something? Email security@ownablee.com. We respond within 48 hours.