Platform / Access and audit
Access Control and Audit
The access and accountability layer a regulated programme needs: role-based access, optional 2FA, single sign-on, and an append-only audit log that records every action for the auditor.
Last reviewed June 2026
Problem
The gap Access and audit closes
Regulated buyers cannot adopt a tool that cannot answer who did what and when, or that cannot fit their identity and least-privilege requirements. Access control and an immutable trail are table stakes, not extras.
How Penaxtra approaches it
How Penaxtra delivers Access and audit
Penaxtra enforces role-based access (owner, admin, editor, viewer), offers optional TOTP 2FA and magic-link sign-in, and records every auth and data event in an append-only audit log mirrored for tamper-evidence. Single sign-on (SSO / SAML) is rolling out for enterprise tenants. Every record is tenant-scoped under row-level security.
Technical capabilities
Access and audit capabilities
Optional TOTP 2FA and magic-link sign-in (user opt-in)
SSO / SAML for enterprise (rolling out)
Append-only, tamper-evident audit log of every action
Tenant isolation enforced by row-level security
CSV export of the audit trail
Compliance mapping
Access and audit compliance mapping
Supports ISO/IEC 42001 access and accountability controls, EU AI Act Article 12 (record-keeping), and NIST AI 600-1 GOVERN actions.
Related
Explore further
Request a demo
Scoped walkthrough of the Platform / Access and audit surface against your environment. No credit card.