Voilatier handles sensitive information: phone, email, purchase habits. The architecture is built so you and your customers trust every interaction.
Phone and email are stored AES-256-encrypted via Laravel Crypt. In parallel we keep an HMAC-SHA256 hash to spot duplicates without bulk-decrypting. Every web connection requires TLS 1.2 or higher.
point_movements and stamp_movements are append-only: once a row lands, the model throws on UPDATE or DELETE. Corrections happen via compensating rows (refund, chargeback), preserving the complete history.
Every meaningful change in the panel is logged via Spatie ActivityLog with user_id, timestamp and IP. API keys and manual point adjustments get their own separate trail that only company_admin can read.
The super_admin and company_admin roles require TOTP. We support any standard authenticator (Google Authenticator, 1Password, Authy). Sessions expire on inactivity and failed retries trigger automatic throttling.
Each tenant owns its data. We support full CSV export (portability), soft anonymization (anonymized_at) that preserves aggregates without PII, and per-tenant configurable retention. Right-to-be-forgotten works by clearing the PII columns and keeping hashes only for referential integrity.
If you discovered a security issue, email us at [email protected]. We acknowledge within 24 business hours and publicly credit responsible reporters.
