Access control
Role-based route access, menu visibility, and per-business overrides keep modules available only to the right users.
Security
Designed around scoped access, encrypted secrets, and operational auditability.
CareLedger separates public pages from the authenticated workspace and keeps merchant data behind role checks, business scoping, CSRF protection, and token-based authentication.
Data boundaries
Server-side tables, exports, and AJAX actions are scoped to the active business workspace.
Launch readiness
Production checks cover HTTPS, MySQL, app keys, Stripe, Ozibus, OAuth credentials, workers, storage, and retention.