📄️ Security Defenses & OWASP
TeaQL provides structural defenses against common web application vulnerabilities by moving business data access through generated APIs, runtime context, and explicit audit metadata. These mechanisms reduce common risk, but they still need to be paired with application-specific authorization rules, dependency management, and normal security review.
📄️ Sensitive Field Audit Masking
Use TeaQL model metadata to mask sensitive fields in audit-safe runtime events.
📄️ GDPR Compliance Guide
This document explains how an ORM framework and a data query framework can meet EU GDPR compliance requirements from a technical and architectural perspective.
📄️ PCI DSS Compliance Guide
This document explains how an ORM framework and a data query framework can support PCI DSS compliance from a technical and architectural perspective.
📄️ Global KYC/KYB Guide
Global KYC/KYB should not be implemented as one global database. It should be implemented as regional TeaQL models behind unified service contracts, with every data access passing through an auditable runtime boundary.
📄️ TeaQL Service Privacy Notice
This notice explains what information may be sent to TeaQL-operated server-side services when you use hosted TeaQL capabilities such as online model exploration, model-assisted generation, demo runtimes, or managed support workflows.