DriftExact is designed to be safe to connect to Stripe and your internal systems. It operates read-only, compares records deterministically, and never makes billing or access changes on your behalf.
Read-only. Deterministic. Workspace-isolated. No write access. No automated fixes.
Designed for subscription businesses where billing and access are managed in separate systems.
Required Stripe scope: subscriptions:read
DriftExact does not create, modify, cancel, refund, or otherwise change anything in Stripe. It does not grant or revoke user access in your internal systems.
Billing state and internal access records
DriftExact reads the Stripe subscription data and internal access data required for deterministic comparison. It does not require webhook interception or production traffic routing.
Workspace-scoped access boundaries
Each workspace is logically isolated. Data access, processing, and report generation are scoped to workspace identifiers and are not shared across customers.
Managed secret storage and encrypted credentials
Application secrets are kept in managed secret storage. Stripe API keys and other sensitive credentials are encrypted at rest and excluded from UI responses.
DriftExact is deliberately constrained. It is a monitoring and verification layer, not an enforcement system.
These constraints are intentional. They reduce operational risk and keep the output auditable.
DriftExact only reads the billing and internal access fields required for deterministic comparison. PII usage depends on the identifiers available in your architecture and the mapping profile chosen during onboarding.
DriftExact is designed to minimise data handling. It does not require webhook interception, production traffic routing, or write access to Stripe or your internal systems.
Minimum data required: only the fields needed to identify records, compare billing and access state, and produce a defensible report should be included.
The exact fields visible in a workspace depend on the records your team chooses to compare, the identifiers available in your systems, and the mapping profile defined during onboarding.
DriftExact does not persist raw Stripe API responses. It stores only the normalised fields required for deterministic comparison, integrity reporting, and historical review.
Application services are deployed in London. Database services are hosted in North EU (Stockholm). External API calls such as Stripe follow the destination provider's own routing.
lhr regionThese details describe the current deployed operating environment rather than a broad compliance framework.
When used, the optional data agent runs inside your infrastructure and reads only the internal data required for comparison.
Communication between the agent and DriftExact uses workspace-scoped bearer tokens over HTTPS.
Continuous Monitoring depends on a repeatable read-only internal data path. During qualification, we confirm whether the self-hosted data agent is the right fit for your environment and share the read-only setup details required for Continuous Monitoring.
The self-hosted data agent is designed for controlled, read-only extraction of the internal records required for comparison.
Continuous Monitoring is enabled after qualification confirms that this repeatable read-only path is a fit for your environment.
DriftExact is built for teams that need visibility into billing and access mismatches without introducing write paths, enforcement logic, or hidden automation.
Security and data-handling review materials are available during qualification.
If you need a calm, read-only control layer, those constraints are the point.