Workspace security

Security in Kuvi works at the level of your whole workspace, not just individual accounts.

How your workspace is protected

• Tenant isolation — every company's data lives in its own private workspace on its own subdomain. Nothing is shared across companies.
• Role-based access — people only see what their role allows.
• Encrypted secrets — Key Docker credentials are sealed with AES-256-GCM.
• Audit trail — sensitive actions are logged, with retention that grows with your plan.

Sign-in security

Set your sign-in rules from Settings → Security. On the Business plan you can enforce two-factor authentication for everyone in the workspace, so no account can sign in with a password alone.