Security & Multi-Tenancy

Enterprise-Grade Security, Built Into the Foundation

Every organisation gets its own isolated database and storage — zero cross-tenant data access, by design — layered with multi-factor authentication, granular roles and permissions, IP allowlisting, and full control over which modules your team actually pays for.

  • Isolated per-tenant databases
  • MFA & role-based access
  • Modular licensing
Security and tenancy

One codebase, one deployment — but never a shared database between organisations.

Each tenant runs on its own database and storage namespace, automatically provisioned when a new organisation signs up, so isolation is architectural, not just a permission check.

A Database of Your Own, Automatically

When your organisation signs up, Anchor automatically provisions a dedicated database and storage folder — no shared tables, no shared media buckets.

  • One database per organisation
  • Automatic tenant provisioning
  • Isolated cloud storage per tenant
See how tenancy works
Only the Right People, Only What They Need

Multi-factor authentication, configurable roles and permissions, and IP allowlisting for security-conscious organisations keep access exactly where it should be.

  • Email & TOTP multi-factor authentication
  • Configurable roles & granular permissions
  • IP allowlisting & trusted devices
See access controls in action
Multi-tenant architecture illustration

Cross-Tenant Data Access

Zero, By Design

Organisations on Isolated Databases 100%
Security dashboard

Isolation You Don't Have to Take Our Word For

Our data security lead asked hard questions about tenant isolation before we signed. The answer — separate databases, not just separate accounts — is what got us over the line.
IT & Compliance Lead

Multi-Site Care Provider

Frequently Asked Questions

No — every organisation has its own dedicated database and storage namespace, with no shared tables or shared media buckets.
MFA is enforced on first login, with support for both email-code and TOTP authenticator apps.
Yes — IP allowlisting and trusted device management are available for security-conscious organisations.
Each module — HR, medication, CQC, QA, and more — can be individually enabled or disabled for your organisation, so you only pay for what you use.
A new organisation's database, user, and storage folder are provisioned automatically when the account is set up, before any data is entered.