Built to keep customer project data scoped, controlled, and recoverable.

HandoffGrid is a live production platform for physical security closeout teams. This page explains the current controls around data access, account management, billing, storage, and platform reliability in buyer-friendly terms.

Live now

Data stays scoped to your organization

Customer records are partitioned by organization so one workspace cannot browse another workspace's sites, assets, punch items, photos, or turnover data.

Organization-scoped database access
Signed access for protected files and photos
Server-side plan and permission enforcement
No shared customer data pools

Live now

Account control for real teams

Admins manage who can access the workspace, how users join, and what happens when billing or team structure changes.

Invite-based team access
Role-aware collaboration model
Stripe billing + self-serve customer portal
Data retained if a plan changes or is canceled

Current posture

Reliability and recovery

The platform runs on managed cloud infrastructure with production deployment controls, storage protections, and a roadmap toward deeper enterprise controls.

Managed database and object storage
Cloudflare delivery and edge protection
Transactional system email infrastructure
Further audit and permission depth planned

Operational safeguards

These are the areas buyers usually ask about first: who can access data, how accounts are controlled, where files live, and what happens around billing or recovery.

Area	Current approach	Customer impact
Workspace data isolation	Organization-scoped Row-Level Security in the database	Your users only see records associated with their workspace.
File and photo access	Protected storage with signed URL access patterns	Uploaded proof is not exposed as a public file bucket.
User access	Invite-based collaboration with role-aware workflows	Teams can control who joins the workspace and collaborate without shared passwords.
Billing and payment data	Stripe-hosted checkout and customer portal	HandoffGrid does not store card details directly.
Plan enforcement	Limits enforced server-side, not only in the UI	Usage rules do not rely on client-side trust alone.
Deployment and delivery	Cloudflare-hosted web delivery with managed deployments	Customers benefit from CDN delivery, edge protections, and stable releases.
Recovery posture	Managed database/storage providers with retention-focused platform design	Customer data is not deleted just because a subscription changes or ends.

The current stack is production live today. Additional enterprise controls will expand over time, but the platform already enforces core customer separation and billing safety now.

Infrastructure &
data handling.

The stack is designed so buyers can answer the practical questions quickly: where data lives, how access is restricted, how payment information is handled, and what happens if a user or subscription changes.

Supabase + PostgreSQL

Core application data lives in a managed PostgreSQL environment. Row-Level Security is applied so customer records stay scoped to the correct organization.

Cloudflare delivery

The web app and marketing site are delivered through Cloudflare's edge network, which improves global performance and adds managed network-layer protection.

Stripe billing

Payments are processed by Stripe, not stored directly by HandoffGrid. Customers can update billing details, change plans, or cancel through the self-serve portal.

Protected file storage

Field photos and supporting files are stored with scoped access controls. Retrieval patterns use signed access rather than leaving project evidence broadly exposed.

Email via Resend

Transactional messages such as invites and reminders are sent through a verified sending setup so account and workflow emails are delivered through a managed provider.