Stop digging through email chains and shared drives. Our Knowledge Vault gives your team one secure, searchable place for every document — with department-level access control built in.
Built for professional teams
Features
Built for real teams — not IT departments. Simple enough for day one, powerful enough to scale.
FTS5-powered search scans document titles, categories, summaries, and full body text. Results rank by relevance in milliseconds.
Every upload passes through extension whitelisting, MIME validation, magic-byte verification, filename sanitisation, size limits, and AI threat scoring before it is accepted.
Managers have full control. Consultants see only their department's documents plus company-wide content. Enforced server-side on every query — not just in the UI.
Every organisation gets a completely separate workspace. No data leaks between tenants — every database query is scoped by workspace ID at the SQL level.
Set a review date on any document. Managers are automatically alerted before documents expire so nothing falls out of compliance unnoticed.
Every uploaded PDF is automatically read and summarised with key action tips so your team grasps documents without reading every page.
Every document update is tracked. Roll back to any of the last five versions or audit who changed what and when.
Every login, upload, edit, view, and deletion is logged with timestamp and IP. Every stored file carries a SHA-256 integrity hash verified on every download.
How It Works
No complex setup. No IT tickets. Your team is productive from day one.
Sign up and get a unique workspace URL. Invite your team with a single link — no licence keys or procurement process required.
Drag in your PDFs. Assign departments. Our AI reads every document and writes a plain-English summary with action points for you.
Your team can find any document in seconds. Access is automatically restricted so consultants only see what's relevant to their role.
Who It's For
Whether you manage a portfolio of buildings or a school's compliance library, Our Knowledge Vault fits your workflow.
Give every consultant access to the right documents for their engagement — nothing more, nothing less.
Centralise maintenance logs, lease agreements, compliance certificates, and contractor SOPs in one secure location.
Store policies, safeguarding documents, and teaching resources with role-based access for admin, staff, and leadership.
Maintain a verifiable audit trail for every document. Meet compliance requirements without manual paperwork.
The Impact
Security — NIST 800-53 · OWASP Top 10
Every control below is live code running in production. No checkbox compliance theatre.
Every uploaded file is encrypted on disk (NIST SC-28). Legacy files load without disruption.
Each file's hash is stored at upload and verified on every download (NIST SI-7). Tampering is detected instantly.
All passwords are hashed using bcryptjs at cost factor 12. Plain-text passwords never touch the database.
Signed JWT tokens. Logout adds the token to a blocklist so stolen tokens can't be replayed (NIST AC-12).
Account locks for 15 minutes after 5 failed login attempts. Every failure is logged with IP.
Sessions auto-expire after 30 minutes of inactivity with a 5-minute warning before forced logout.
Helmet enforces CSP, HSTS (1 year), X-Frame-Options, X-Content-Type-Options, and Referrer-Policy on every response.
Auth endpoints: 20 attempts per 15 min. API: 200 req/min. Brute-force and credential-stuffing are blocked at the network layer.
Every database call uses prepared statements. SQL injection is structurally impossible — not just filtered.
All file paths are resolved and verified to stay inside the uploads directory before any read or write.
Upload validation: rate-limit → extension → magic bytes → filename sanitisation → size limit → AI threat scoring.
Every action (login, upload, view, edit, delete) is logged with user ID, timestamp, and IP. Compliance-ready from day one.
Start securing and organising it today. Free to get started, no credit card required.