Security & Stack

How Talero is built and hardened for production finance workloads.

Our Stack

A deliberate, boring-in-the-best-way stack chosen for reliability, auditability, and long-term maintainability.

Django

5.2

Strict API layer, schema validation, and fail-closed multi-tenancy on every request.

PostgreSQL

16

ACID ledger storage with row-level isolation per workspace.

React

19

Composable UI with server-first rendering and minimal client surface.

Tailwind CSS

4

Consistent design tokens and accessible components across the product.

Security Principles

Security is not a checkbox — it is how we model data, permissions, and change.

Fail-Closed Architecture

Every protected endpoint validates workspace scope and permissions before business logic runs. Ambiguous context rejects the request — never silent cross-tenant access.

Role-Based Access Control

Owners, operators, and viewers receive least-privilege roles. Sensitive actions require explicit capability, not implicit trust.

Immutable Audit Logs

Critical financial entities keep historical records so you can reconstruct who changed what, and when, for compliance and dispute resolution.

Data Encryption

Data is encrypted in transit (TLS) and protected at rest through our cloud infrastructure. Secrets never ship in client bundles.

We continuously review dependencies, access patterns, and incident response playbooks. For security disclosures, contact us via the Contact page.

Back to home