SeedLink

Built for enterprise compliance teams

SSO, audit logging, and organization management — designed for teams that need security, visibility, and control.

Authentication

SSO / SAML

Enable single sign-on for your organization with SAML 2.0. Your team authenticates through your existing identity provider — no separate credentials to manage.

  • SAML 2.0 single sign-on
  • Works with Okta, Azure AD, Google Workspace
  • Automatic user provisioning
  • Available on Growth + Enterprise plans

Supported providers

Okta
Azure AD
Google Workspace
OneLogin

Any SAML 2.0 compatible provider is supported.

Visibility

Audit logging

Every action in your organization is logged with a full audit trail. Know who did what, when, and from where — queryable, exportable, and compliance-ready.

  • Full audit trail for every action
  • Queryable logs with filtering and search
  • Exportable for compliance reporting
  • Real-time event streaming
audit-log.json
{
  "id": "evt_abc123",
  "action": "connection.created",
  "actor": {
    "id": "user_456",
    "email": "admin@company.com"
  },
  "target": {
    "type": "connection",
    "id": "conn_789"
  },
  "metadata": {
    "provider": "metrc",
    "state": "CA"
  },
  "occurred_at": "2024-01-15T14:30:00Z"
}

Control

Organization management

Multi-tenant organizations with role-based access control. Manage team members, API keys, and environments from a single dashboard.

Role-based access

Three permission levels — Viewer, Member, and Admin — with granular control over who can access what.

  • Viewer: read-only dashboard access
  • Member: API access + connections
  • Admin: full org management

Environment isolation

Sandbox and live environments are fully separated. API keys, connections, and data are isolated by design.

  • Separate API keys per environment
  • Isolated connection pools
  • Independent rate limits

API key management

Create, rotate, and revoke API keys from the dashboard. Each key is scoped to a specific environment.

  • Per-environment key scoping
  • Key rotation without downtime
  • Usage tracking per key

Security

Security by default

Every layer of SeedLink is built with security and compliance in mind.

Encryption

AES-256-GCM

All credentials encrypted at rest with AES-256-GCM and scrypt key derivation

Isolation

Per-org

Complete tenant isolation — credentials, connections, and data are never shared

Environments

Separated

Sandbox and production environments are architecturally isolated

Ready to scale your compliance infrastructure?

Talk to our team about Enterprise plans, custom SLAs, and dedicated support.

Talk to salesView pricing →