Security

We design Lekha for controlled access and operational traceability from day one.

Tenant and branch isolation

Every request is scoped by tenant and branch access. Cross-tenant and out-of-scope branch access is blocked by policy.

Owners, staff, and accountants are permission-scoped. Free-plan tenants are read-only unless moved to paid by admin.

Captured document fields stay as draft suggestions until a user explicitly confirms them into the ledger.

Operational actions are traceable through audit-log records and related workflow state changes.

See our Privacy Policy and Terms and Conditions for operating and data policy boundaries.

To report a vulnerability, email hello@ekarche.com. Our public disclosure file is available at security.txt.