Security
Zero-trust by default. Verizon-grade by design.
Luxara Connect OS treats every carrier call, every credential, and every privileged action as sensitive. Approvals are workflow-gated, secrets stay server-side, and every event is logged.
Server-side credentials
ThingSpace keys are vaulted server-side. The browser never sees a secret.
Approval workflows
Suspend / restore / reassign require admin sign-off with reason capture.
Audit log on every call
Every sensitive action is attributed, timestamped, and immutable.
RBAC + MFA
13 default roles, granular permission set, MFA enforced for privileged users.
Billing isolation
Stripe webhooks update billing state only — never trigger carrier actions.
Multi-tenant by design
Organization isolation enforced at the data layer with RLS.
Zero-trust mode
Every privileged action re-verifies session + role + tenant scope.
Compliance-ready logging
Exportable audit trails with risk classification (Low → Critical).
Credential vault access
Vault access is itself audited; support cannot read raw secrets.
Carrier safety rule
Failed payments never directly trigger Verizon suspension. Luxara creates billing alerts, applies grace periods, and queues suspend / restore actions that require admin approval before any server-side ThingSpace call executes.