Security posture

Technical controls explained in business-friendly language.

Axim security is designed to support procurement, risk, and implementation conversations. The emphasis is on isolation, encryption, auditability, and deployment options that make assurance easier.

Security controls

100% Australian data residency

Tenant isolation with role-aware access

AES-256-GCM encryption of sensitive data

Audit logging across the platform

Isolation by tenant

Customer data is segregated by tenant, with strict context-setting before any data access and role-aware permissions throughout.

Layered service protection

Three-layer Cloud Run IAM with internal ingress and OIDC service-to-service calls. Backend services are not open internet endpoints.

Encryption and auditability

AES-256-GCM encryption of sensitive fields, secrets handled as protected values, and attributable audit logging across the platform.

Compliance direction

Aligned to the frameworks councils are asked about.

These are the standards and obligations Axim is built and being assessed against. Ahead of formal certification, the emphasis is directional alignment rather than a certification claim.

SOC 2 Type I pathwayAustralian Privacy Principles (APP)Notifiable Data Breaches (NDB) schemeASD Essential EightQueensland IS18 information securityPublic Records Act 2023 (Qld)WHS Act 2011

Procurement-safe posture

Enough technical depth to support review, expressed without unnecessary complexity.

This page is built to help executive, procurement, and technology stakeholders reach the same understanding of the platform's control model.

See Axim in the context of your organisation

Book a guided walkthrough focused on the areas that matter to your team, whether that is finance and rates, records and SharePoint, asset operations, or the migration path from your current platform.

We can tailor the discussion around your current operating model, governance requirements, and transition priorities.

Book a Demo Request Migration Assessment