Secure Deployment Policy
How Finpliq should be deployed safely without breaking migrations, authentication, billing or filing workflows.
At a glance
- Deployments require build checks, migration review and rollback planning.
- Production secrets must be configured in the hosting environment, not committed.
Full policy
- Before deployment, run Prisma generate, TypeScript/Next build, migration review, smoke tests and route checks.
- Database migrations must be reviewed for data loss risk. Destructive resets must not be used on production data.
- Rollback plans should identify the previous deployment, database compatibility and communication steps if customers are affected.