Data isolation
ActiveOperator data is stored in isolated workspaces. No operator can access another operator's records.
Demo Mode|Sample Data Only|Security / Data Handling & Compliance
Security
Data handling and security architecture.
Operator data is isolated, encrypted in transit and at rest, and never shared without consent. Fresh Margin follows security-conscious operating practices. No formal security certification is currently claimed.
Security controls
Active security controls.
Encryption in transit
ActiveData transfer uses industry-standard transport encryption. Record uploads, API requests, and artifact delivery are protected in transit.
Encryption at rest
ActiveStored records and artifacts use cloud-provider encryption at rest where available.
Access controls
ActiveAccess is restricted to assigned team members. No broad shared credentials. Operator workspaces are separated.
Audit logging
ActiveAccess to operator data is logged where system logs are available. Operators can request activity summaries.
Data retention
ActiveOperator data is retained only as long as needed for active reviews. Operators can request deletion at any time.
No third-party training
ActiveOperator data is never used to train general-purpose models or shared with third-party AI services.
Consent-first sharing
ActiveOperator data is never shared with partners, vendors, or other operators without explicit written consent.
Compliance
Compliance posture.
- +Not currently SOC 2 certified. Security practices are informed by common B2B expectations.
- +GDPR data subject rights honored
- +CCPA data deletion and portability supported
- +No financial or health data processed
- +No payment card data stored
Data types
What data Fresh Margin uses.
Order exports
MediumBasket economics and leakage analysis
POS reports
MediumSales and category contribution mapping
Vendor cost files
HighVendor drift detection and COGS modeling
Delivery policies
LowZone risk and courier exposure analysis
Labor assumptions
MediumPick/pack labor exposure estimation
Substitution logs
MediumSubstitution behavior and margin impact
Refund records
MediumRefund root-cause analysis
Inventory snapshots
MediumStockout and dead-stock analysis
System LogConsole simulation
09:12Intake scope received - pickup, delivery, prepared food
09:18Delivery policy mapped - 3 zones, peak window flagged
09:27Marketplace fee burden classified - promo compression detected
09:34Substitution exposure pending item-level data
09:41Owner queue generated - 4 decisions queued
09:52Operator readout ready - assumption labels applied
Scanning sample workflows...
Next step
Security is part of every engagement.
Operator data is protected with encryption, isolation, and access controls. Read our full security posture or request a data handling discussion.
Request Product Access
Security-conscious practices