Access & identity
Role-based access control
We make complex systems easy to use and information easy to understand.
Multi-factor authentication
Add a second step at sign-in to reduce account takeovers.
Segregation of duties
Stop risky combinations of access — for example the same person raising and approving a payment.
Data protection
Encryption
TLS protects data in transit. Databases and file storage are encrypted at rest.
Backups
Automatic daily backups, encrypted at rest, with restore tests to prove recovery.
Field-level protection
Sensitive fields such as payroll or bank details are restricted to authorised roles.
Audit & evidence
Full audit trail
Every important action is recorded — who did what, when, and from where.
AI prompt history
When you use Nexa's AI features, prompts and system actions are logged for review.
Exportable evidence
Export logs and reports for auditors and keep a clear record of decisions.
Compliance
UK GDPR / EU GDPR
Tools to locate data, handle access requests, and set retention rules with audit trails.
Making Tax Digital
Prepare and submit VAT returns digitally when live HMRC keys are connected.
Construction Industry Scheme
Calculate deductions and produce statements for CIS suppliers.
Platform security & resilience
Secure development
Code reviews, dependency checks and security testing before release.
Vulnerability management
Regular scanning and patching of systems and libraries.
API security
API keys, rate limits, IP allow‑listing (optional) and signed webhooks.
