Enterprise-grade security,zero friction.

Passkeys, two-factor auth, and role-based access control built in from day one, so your team data stays protected without slowing anyone down.

Get started

Permissions you can see at a glance.

Every role maps to exactly what it can touch. Grant view, edit, admin, and billing rights per role, then scope them down to a single board.

Role
View
Edit
Admin
Billing
OW Owner
Owner view: granted
Owner edit: granted
Owner admin: granted
Owner billing: granted
AD Admin You
Admin view: granted
Admin edit: granted
Admin admin: granted
Admin billing: denied
MB Member
Member view: granted
Member edit: granted
Member admin: denied
Member billing: denied
GU Guest
Guest view: granted
Guest edit: denied
Guest admin: denied
Guest billing: denied
SSO enabledTOTPPasskeys

Three layers, one account.

How people sign in, what they can reach, and a record of everything that happens, all in one place.

Passwordless sign-in

Passkeys, authenticator apps, and email codes. Phishing-resistant by default, with 2FA you can enforce org-wide.

Sign-in methods
PasskeysNo password required
TOTP authenticatorAuthenticator apps
Email OTPOne-time codes
Password onlyLegacy sign-in
2FA enforced org-wide for all members

Scoped access

Grant access at the org, workspace, folder, or board level. People only ever see what their role allows.

Access scopeEditor · Sarah
Acme OrgNo access
Product workspaceView
Roadmap folderEdit
Launch boardEdit
Finance workspaceNo access

Audit trail and sessions

Track sign-ins, role changes, and sensitive actions with device detail. Revoke any session the moment a device goes missing.

Activity and sessionsLive
SC
Sarah Chen signed in with passkeyMacBook Pro · Sydney
2m
YO
You revoked a sessioniPhone 15 · lost device
14m
TR
Tom Reyes changed a board roleChrome · Windows
1h
PN
Priya N. enabled 2FASafari · iPad
3h

Control that never loses data.

Limits and lockouts freeze access, they never erase work. When access changes, the data stays exactly where it was, ready the moment a role is restored.

  • Revoke a session or role and access stops instantly
  • Frozen accounts keep every board, doc, and task intact
  • Restore access and people pick up right where they left off
Access scopeEditor · Sarah
Acme OrgNo access
Product workspaceView
Roadmap folderEdit
Launch boardEdit
Finance workspaceNo access

Next steps

Back to features

See how boards, docs, meetings, and Lilly fit together.

Explore features

Start your workspace

Spin up a secure org in minutes, no setup project required.

Get started

Ready to get started?

No migration headaches. No endless configuration. Just work.

Get started
Already have an account? Sign inQuestions first? Talk to us