Security
Security is the product, not a feature
Clavkey exists so the right people reach the right systems, and no one else does. Here is how every sign-in, policy, and application behind your key is protected.
Defense in depth
How Clavkey protects access
Security is not one wall. It is layers, each doing its job even when another is being tested.
MFA on every door
Multi-factor authentication across every application behind your sign-on (authenticator apps, passkeys, and hardware keys) with step-up challenges for sensitive actions.
Encrypted end to end
Traffic is encrypted in transit with modern TLS and data is encrypted at rest. Sessions are short-lived and can be revoked the moment you need them gone.
Least privilege by default
Role- and group-based access means people get exactly what they are entitled to and nothing more, and you can change or revoke it across every app at once.
Every action audited
A complete, tamper-evident trail of sign-ins, policy changes, and administrative actions, so you can always prove who did what, and when.
A hardened front door
Clavkey gives your people a single, hardened place to sign in. Your applications are not exposed directly. They sit behind the same identity and MFA checks.
Isolated application hosting
Sensitive apps hosted with Clavkey (an employee portal, internal tools, client portals) run in isolated, hardened environments behind your identity layer, so a problem in one place cannot walk into another.
Private network access, not open ports
Staff and clients reach private networks and internal resources only after they are authenticated and authorized, identity-gated and encrypted, with no public exposure and no shared VPN credentials to leak.
Our commitments
No standing access
Administrative access is granted just in time and logged, not left open because it is convenient.
Your data is yours
We do not sell or mine your data. It is used to run your service, and that is the whole of it.
Secure by default
The safe configuration is the default one (MFA on, least privilege on, auditing on), not an upgrade you have to go find.
Built to be verified
We design for evidence. Clear logs, exportable audit trails, and straight answers when your security team comes asking.
Running a security review before you buy?
Send us your questionnaire. We'll give you straight answers and the evidence to back them.
Talk to us