Always on · Security

Entry event · #482917:42 AM
DoorFront · The AldenAUDIT LOGGED
Authorized byResident · Unit 3CATTRIBUTABLE
Resident emailaes256:v3:9f4a…e21cENCRYPTED
Search indexhmac:blind:77d0…NO PLAINTEXT
AUDIT WRITE CONFIRMED ✓ · SENSITIVE READS FAIL CLOSED

Locked by default, answerable always.

Veni was built assuming a board, a regulator, or a resident will one day ask exactly what happened and who saw it. Every field above is real behavior, not a badge.

Encrypted at rest

Names, emails, phones, ID photos, and call transcripts are AES-256 encrypted with versioned, rotatable keys.

Searchable without plaintext

Staff lookups run on blind indexes. The database never holds a searchable plaintext copy of contact info.

Fail-closed auditing

Access to the most sensitive data is denied outright if the audit write fails. No read without a record of the read.

Retention, then deletion

ID captures and sensitive media live under 30, 60, or 90-day windows, then both blob and record are purged, with deletion confirmed.

AI on your terms

Veni Intelligence is opt-in per building with monthly budgets. Transcripts it reads are encrypted like everything else.

Transparent governance

Board investigations are time-boxed with a stated basis, and residents are notified under the disclosure policy you choose.

IN TRANSIT: TLS everywhere · HSTS on web apps · webhook signatures verified · secrets compared in constant time