Jarvix AI / Production Hardening
Security Center
Security Center
| Area | Risk | Requirement |
|---|---|---|
| Customer Portal | customer_data_scope | Customers only see their own appointments, invoices, payment methods, and profile. |
| Payroll | sensitive_financial | Only owner/manager/payroll roles should access payroll. |
| Financial Center | sensitive_financial | Only owner/manager/accounting roles should access financial reports. |
| Workforce Documents | sensitive_documents | HR documents must be protected by role. |
| Pricing Settings | business_rules | Only owner/manager roles can change pricing rules. |
| Payment Methods | payment_security | Only tokenized last4 data is shown; raw card data must never be stored. |
| Admin Settings | tenant_security | Only owner/admin roles can update company settings. |