Resources
Security built for corporate logistics
Tenant isolation is not a feature flag—it is enforced where data lives. NexusFreight pairs Supabase Row Level Security with encrypted document storage so sensitive commercial files stay private.
Supabase Row Level Security (RLS)
Every application query runs as an authenticated user tied to an organization. PostgreSQL RLS policies enforce that rows are visible or writable only when they belong to that org. There is no “accidentally list every carrier in the database” path: the database itself rejects cross-tenant access, which is the bar enterprise IT and legal teams expect.
Profiles, loads, drivers, trucks, settlement inputs, and metadata all flow through the same org boundary—consistent for dispatch agencies managing dozens of MCs and for single-fleet operators alike.
Rate confirmation storage & AES-256
Rate confirmations (ratecons) are stored in Supabase Storage buckets scoped to your project. Objects are protected with AES-256 encryption at rest on the underlying cloud object store—aligned with how regulated enterprises expect commercial PDFs and contracts to be handled. Access is mediated through your app with signed URLs and org-aware paths, not public directories.
Why this matters for trust
Brokers and carriers share commercially sensitive documents every day. NexusFreight is designed so those artifacts remain inside the tenant that uploaded them, with encryption and RLS as dual layers—not optional hardening after the fact.