Skip to main content

Operations

Billing & InvoicingInventory & WarehousingOrders & FulfilmentProjects & Job ManagementTime ManagementLocation Management

Commerce

E-CommerceSubscriptionsPrice BooksReturns & RMAWarranties

Bookings

Bookings & SchedulingStaff Scheduling

Management

Customer & Supplier CRMCustomer PortalCommunicationsAccounting & Finance
View all features
Business SolutionsBilling, bookings, inventory, e-commerce, CRM & accounting in one platform
Medical SolutionsPatient records, clinical notes, billing, bookings & medical aid claims

Medical

Medical OverviewClinical & Patient RecordsMedical Aid & Claims

Platform & Security

Admin & SettingsSecurity & ComplianceAI Notes & Voice

Booking verticals

HospitalityVehicle RentalEquipment HireConsultationsEvents
Pricing
Why BX1X
Blog
About
Storefront demoBrowse a live e-commerce storefront
Booking demoTry the client-side booking experience
Book a demo

© 2026 BX1X

Security & Access Control

Three layers of protection.
Zero compromise.

Identity, authorisation, and guardrails — working together so the right people access the right data, and every action is recorded.

Book a demo

Defence in depth

Security isn't a feature — it's three independent layers that work together. Even if one is bypassed, the others hold.

Layer 1

Identity context

Secure authentication with session management, token lifecycle, and rate-limited login protection. Every session knows who you are, which organisation you belong to, and what role you hold.

Secure session management
Token lifecycle (access, refresh, reset, verify)
Rate-limited login protection
Multi-organisation context
Invitation-based onboarding

Layer 2

Authorisation

Role-based access control with 30+ permission types enforced on every route and action. Permissions are checked before any data is read or written — not after.

30+ granular permission types
Route-level and action-level enforcement
Custom roles with fine-grained permissions
Permission checks before data access
Role assignment per user per organisation

Layer 3

Experience guardrails

The interface adapts to your role. Controls you can't use don't appear. Actions you're not authorised for aren't offered. No error messages — just a clean, relevant experience.

UI adapts to user permissions
Unauthorised actions are hidden, not blocked
Module visibility controlled by role
Feature toggles per organisation
Destructive actions require confirmation

Beyond access control

Security extends to data isolation, encryption, audit logging, and organisation management.

Audit trails

Every action — create, update, delete, access — is logged with who, what, when, and from where. Compliance-ready, filterable, and searchable.

Multi-tenant isolation

Data is isolated between organisations at the database level. One organisation's data is never accessible to another, regardless of user role.

Data encryption

Sensitive data is encrypted at rest and in transit. Payment credentials use AES-256-GCM encryption. Tokens are hashed before storage.

Organisation management

Create organisations, manage members, assign roles, and control access — all from an administrative interface with full audit logging.

Why it matters

Every action is logged — who did what, when, and from where — ready for compliance review

Permissions are enforced before data is accessed, not after — no data leaks from UI-only restrictions

Multi-tenant data isolation ensures one organisation's data is never visible to another

Role-based access means team members see only what's relevant to their function

Destructive actions always require explicit confirmation — no single-click deletions

Rate limiting protects against brute-force attacks on authentication endpoints

Medical data (PHI) has additional access controls beyond standard permissions

Related features

Medical Edition Customer Portal Accounting & Finance

See security in action

Book a demo and we'll show you role-based access, audit trails, permission enforcement, and multi-tenant isolation — all live.

Book a demo