Commandix guide

Security and Compliance Operations

Commandix includes application controls that support GDPR readiness and SOC 2 operating discipline. This chapter explains what admins should use regularly.

Last updated July 8, 2026

Admin checklist

Evidence sources inside Commandix

EvidenceWhereWhy it matters
Activity audit logsSettings -> Audit -> Activity LogShows create, update, and delete events with actor, entity, details, and timestamps.
Login eventsSettings -> Audit -> Login EventsShows authentication success/failure, MFA failures, IP address, and user agent.
Security eventsProfile and backend security event recordsCaptures password changes, session revokes, and account security actions.
Privacy requestsProfile -> Privacy request intakeCreates a trackable request record for GDPR-style workflows.
Personal data exportProfile -> Privacy exportSupports access and portability requests.
Role and section accessSettings -> UsersSupports least privilege and access review evidence.

Help site security

The help center is static and served independently from the application runtime. It should be delivered over HTTPS, with security headers, a restrictive content security policy, no server-side login surface, and no writable application endpoints.