Six security features. Zero additional cost.
Rate limiting, HMAC signing, team-based access control, automated archival, permission analysis, and a tamper-evident hash chain — all built into every Delivery Hub install.
Enterprise-Grade Protection, Built In
Every Delivery Hub install ships with these six security features enabled by default. No add-on packages, no premium tiers, no additional configuration required.
Rate Limiting
Per-entity request throttling protects your org from runaway integrations and abuse. When a consumer exceeds their limit, Delivery Hub responds with HTTP 429 and a Retry-After header so callers back off gracefully instead of hammering your API.
HMAC-SHA256 Payload Signing
Every outbound sync payload is signed with HMAC-SHA256 using a per-entity secret. The receiving org verifies the X-Signature header before processing, making data tamper-proof in transit between Salesforce orgs.
Team Visibility & Board Scoping
Record-level board scoping by team membership. When team visibility is enabled, users only see work items assigned to their team. Admins define teams via Custom Metadata and toggle enforcement per entity without code changes.
Data Archival
Automated archival of completed work items after a configurable retention period. Set ArchivalRetentionDaysNumber__c per entity and the service handles the rest. Keeps your active boards lean while satisfying GDPR and data-retention policies.
Permission Analyzer
A dedicated LWC that audits user, profile, and permission-set assignments across your Delivery Hub install. Hit "Generate Security Report" and it renders the Security_Audit DocumentTemplate as a downloadable PDF for your compliance team.
SHA-256 Hash Chain Audit Trail
Every ActivityLog__c record gets a hash chain entry linking it to its predecessor. DocumentAction__c signature events ride the same chain. If anyone tampers with a record, the chain breaks. ESIGN-Act and UETA compliant.
Why This Matters for Regulated Industries
If your compliance team asks “how is this data protected?” you want six concrete answers, not a shrug and a Salesforce Shield quote.
Financial Services
SOX and FINRA auditors want tamper-evident logs and access controls. The hash chain and permission analyzer give them what they need without a separate GRC tool.
Healthcare & Life Sciences
HIPAA requires access controls, audit trails, and data retention policies. Team visibility scoping and automated archival map directly to these requirements.
Government & Public Sector
FedRAMP-adjacent orgs need signed payloads, rate limiting against abuse, and exportable security audit reports. All built in.
Legal & Professional Services
Client confidentiality demands record-level scoping. The hash chain audit trail holds up in court because every entry is cryptographically linked to the previous one.
All Free. All Built-In.
$0
per feature, per user, per org — forever
Most Salesforce security add-ons charge per user per month. Delivery Hub ships all six features in the free base package. Rate limiting, HMAC signing, team scoping, archival, permission analysis, and the hash chain audit trail are all included in every install. No enterprise tier, no security add-on SKU, no negotiations.
Need help configuring these features for your org? Implementation packages start at $2,500.
Ship Secure. Ship Free.
Install Delivery Hub and get enterprise-grade security features out of the box. No add-ons to buy, no Shield license required, no per-seat fees.