Your commercial data — protected, and in your control.
Vyntworks holds your estimates, costs, margins and client positions — and it runs AI against them. That's exactly why access, approvals, AI autonomy limits and integrations are built so the right people see the right things, and every committing action leaves a trail.
Due diligence welcome. Bring your IT team — we'll walk them through access, approvals, integrations and data handling.
Nine controls, each one enforced — not promised.
Tenant isolation
Every company's data is scoped to its own tenant. Modules such as Vyntworks Intelligence are opt-in per company, so your commercial figures are never visible outside your organisation.
Role-based access
Regular users, client admins and a restricted super-admin tier. Sensitive areas — PO/SCO admin, authorisation tiers, default quote items — are locked to the top tier, and per-user permissions (like Can Approve Invoices) gate who can do what.
Least-privilege portals
Freelancers and subcontractors get their own login that exposes only the quotes, projects and snag lists you grant — never the whole company. A per-person gross-profit toggle keeps your margins hidden, and clearing an access selection revokes it on the spot. More on subcontractor access →
Authorisation tiers
Purchase orders, subcontract orders and internal variations can require sign-off before they commit. A minimum-GP rule refers under-margin quotes to an authoriser, and the authoriser cascades from team to company default.
AI autonomy, enforced server-side
The limits you set on your AI workforce are enforced on the server — not written into a prompt and hoped for. An AI colleague cannot exceed its scope or skip an approval gate, because the platform refuses the action, whatever the model was asked.
Audit trail & undo
AI Edit operations are reviewed before they apply and can be undone. Applying tender prices to an estimate is audited and reversible. Variation status and approvals are recorded — so you can always see who, or what, changed what.
Secure integrations
Xero and Sage 50 connect over OAuth — Vyntworks never stores your accounting password. Tokens expire and are reconnected in a click, and invoice push is scoped to the contacts you authorise.
AI data handling
Files you drop into AI Edit are processed securely and deleted after the session. You choose the model per task, every AI change is reviewed before it commits, and admins can see organisation-wide AI usage.
Every committing action, accountable
Who raised it, who approved it, when. Reviewable AI operations with one-click undo, audited tender-to-estimate updates, and client-position status tracked on every variation.
Nothing commits — or erodes — without you seeing it.
The same controls that protect your security protect your margin. Approvals gate spend, the overspend report flags drift, and reconciliation keeps the number you quoted and the number you make in view.
- Approval required before a PO or SCO is issued
- Under-margin quotes referred for sign-off automatically
- Internal variations approved by email before they count
- Re-syncing Xero never silently un-matches your invoices
Security here isn't a policy document. It's the same machinery that guards your margin: scopes, approval gates and a ledger — applied to people and AI alike.
Hosted on enterprise cloud infrastructure.
Vyntworks runs on managed cloud hosting with encrypted connections, regular backups and isolated tenant data. If you have specific requirements around data residency, retention or access policies, we'll work through them with you before you commit.
Bring your security questions.
We're happy to walk your IT and commercial teams through access, approvals, AI autonomy limits, integrations and data handling.