Your data. Protected.

Every query in LockBench is scoped to your shop at the deepest level — enforced inside the database itself, not just the application layer. Your data can’t be accessed by another shop, even accidentally.

• No cross-contamination between shops, even on shared infrastructure
• Clients, jobs, invoices, bitting records, and key data are all tenant-isolated
• Strict data boundaries applied to every table — no exceptions
• Even if two locksmiths use LockBench, neither can see the other’s records

LockBench uses industry-standard secure session management. Passwords are securely hashed before storage — we never store or transmit plain-text credentials.

• Secure sessions with automatic expiry and refresh
• No plain-text password storage — passwords are securely hashed at rest
• Secure session cookies with httpOnly and SameSite protections
• Optional multi-factor authentication (MFA) for team accounts

When you share a client portal link, your clients can view their invoices, job history, and site records. But the portal is deliberately restricted — clients cannot access sensitive locksmith data.

• Portal users cannot view bitting records or key specifications
• Master key hierarchies and pinning data are never exposed to portal sessions
• Key issuance logs remain internal to your shop
• Access is always scoped to the specific client’s own records

Invoice status changes, digital signature events, and document access are all logged with timestamps and user attribution. If a client ever disputes a job or questions a signature, LockBench has the audit trail.

• Timestamped audit log for invoice lifecycle events
• Signature capture with IP address and timestamp metadata
• Document access tracking for accountability
• In a security-sensitive trade, documentation isn’t optional — it’s protection

LockBench runs on enterprise-grade managed infrastructure trusted by thousands of businesses worldwide. Your data benefits from the same reliability and security standards as large-scale commercial deployments.

• Automatic daily backups with point-in-time recovery
• Data encrypted at rest (AES-256) and in transit (TLS 1.2+)
• HTTPS enforced on every connection — no exceptions
• Hosted on SOC 2 Type II-compliant AWS infrastructure

Locksmiths handle some of the most sensitive physical security data in existence — master key systems, bitting specifications, key issuance records. We built LockBench knowing that a breach of this data isn’t just an inconvenience, it’s a real-world security risk.

• Security architecture designed specifically for locksmith data sensitivity
• Role-based access control for shop team members
• Strict separation between shop owner, technician, and portal user permissions
• Regular security reviews of data boundaries and access patterns