TeamCey

Security at TeamCey

Payroll data is among the most sensitive information a business holds. Here is how TeamCey protects it, layer by layer.

Last updated: July 4, 2026

Tenant isolation

TeamCey is multi-tenant by design. Every table that stores workspace data is protected with database row-level security, so queries are scoped to a single company at the database layer — not just in application code. One company's employees, salaries, and documents are never visible to another.

Encryption

  • In transit — all traffic between your browser and TeamCey is encrypted with TLS.
  • At rest — databases and file storage are encrypted at rest by our hosting provider.

Access control

  • Role-based access separates HR administrators from employees. Admins manage the workspace from the dashboard; employees see only their own records through the portal.
  • Employee portal accounts are provisioned by invitation only, on your company's own portal subdomain.
  • Sessions are managed with secure, httpOnly cookies and refreshed server-side.

Payments

Subscription payments are processed by Stripe, a PCI-DSS Level 1 certified provider. Card details go directly to Stripe — TeamCey never stores or even receives your full card number.

Backups and continuity

Databases are backed up automatically on a rolling schedule, so workspace data can be restored in the event of an infrastructure failure.

Responsible disclosure

If you believe you've found a security vulnerability in TeamCey, please report it through our contact page with enough detail to reproduce the issue. We investigate every report and will acknowledge legitimate findings. Please don't access data that isn't yours or disrupt the service while testing.