Engineering
Secure Deployment Policy
How Finpliq should be deployed safely without breaking migrations, authentication, billing or filing workflows.
- Owner
- Engineering
- Effective from
- 8 July 2026
- Last reviewed
- 8 July 2026
- Review cycle
- Annual or following material change
At a glance
Deployments require build checks, migration review and rollback planning.
Production secrets must be configured in the hosting environment, not committed.
Full policy
Before deployment, run Prisma generate, TypeScript/Next build, migration review, smoke tests and route checks.
Database migrations must be reviewed for data loss risk. Destructive resets must not be used on production data.
Rollback plans should identify the previous deployment, database compatibility and communication steps if customers are affected.