Security is a core part of how TillSwitch is built.
Data separation
Each business operates in its own isolated environment. Data is scoped to your organisation and is not accessible by other users outside your business.
Access control
TillSwitch uses role-based access control to ensure users only see what they need to perform their role.
Roles include:
- Shift-level users
- Store managers
- Area managers
- Business administrators
- Platform administrators (restricted access)
Support access safeguards
Platform administrators cannot freely access store data.
Access requires:
- A time-limited access code generated by the store
- Explicit approval from a store user
- Full logging of access activity
This ensures transparency and accountability.
Audit logging
Sensitive actions are logged, including:
- Access requests
- Data exports
- Key operational changes
Authentication
Passwords are securely handled and never stored in plain text.
Uploads and files
All uploads are validated and restricted to safe formats.
Infrastructure
TillSwitch is deployed in a secure server environment with controlled access and monitoring.