Multi-Tenant Architecture
Every organization in Regentra is a fully isolated tenant. Data, configurations, controls, policies, and user access are all scoped to a single organization. MSPs operate across multiple tenants. As an MSP, you can:- Create and manage client tenants from your MSP dashboard
- Assign technicians and compliance officers to specific client organizations
- Switch between client tenants without logging out
- Maintain separate compliance programs, SLA policies, and configurations per client
There is no data bleed between tenants. A control, policy, or ticket in one organization is never visible to another.
Common Control Framework (CCF)
The Common Control Framework is Regentra’s internal mapping layer. Instead of duplicating effort across frameworks, the CCF lets you implement a control once and satisfy requirements across multiple standards. For example, an “Access Control Policy” might map to:- HIPAA § 164.312(a)(1) — Access Control
- SOC 2 CC6.1 — Logical and Physical Access Controls
- NIST CSF PR.AC-1 — Identities and credentials
- ISO 27001 A.9.2.1 — User registration and de-registration
Frameworks
A framework is a compliance standard you can adopt within your organization. Regentra supports HIPAA, SOC 2, NIST CSF, ISO 27001, CMMC, PCI-DSS, GDPR, and FTC Safeguards. When you adopt a framework:- The full control set is seeded into your organization
- Controls are mapped to the CCF
- Gap analysis becomes available on your dashboard
- Framework-specific features unlock (e.g., BAA tracking for HIPAA)
Policies and Campaigns
Policies are formal documents (e.g., Acceptable Use Policy, Incident Response Plan) that your organization maintains for compliance. Campaigns are the mechanism for distributing policies to employees and collecting signed acknowledgments. When you create a campaign:- Select the policy and the target audience
- Employees receive a notification to review and sign
- You can track completion rates and send reminders
- Signed records are stored as compliance evidence
SLA Policies
An SLA policy defines response and resolution time targets for support tickets based on priority level. SLA policies account for:- Business hours — so timers pause outside working hours
- Priority tiers — different targets for Critical, High, Medium, and Low
- Escalation rules — what happens when a target is about to be breached
Portal
The Portal is a customer-facing interface where your clients can:- Submit and track support tickets
- Access the knowledge base
- Engage in live chat with your team
- View compliance status dashboards (if enabled)
Roles
Regentra uses role-based access control to manage permissions across the platform.SUPER_ADMIN
SUPER_ADMIN
Platform-level access. Can manage all organizations, system settings, and global configurations. Reserved for Regentra platform operators.
ADMIN
ADMIN
Full access to a single organization. Can manage users, settings, integrations, and all modules.
MSP_ADMIN
MSP_ADMIN
Manages the MSP relationship layer. Can create and manage client tenants, assign technicians, and oversee cross-tenant operations.
COMPLIANCE_ADMIN
COMPLIANCE_ADMIN
Full control over the compliance module. Can adopt frameworks, manage controls, create policies, and generate reports.
COMPLIANCE_OFFICER
COMPLIANCE_OFFICER
Works within the compliance module. Can update control statuses, upload evidence, manage policies, and run assessments.
EMPLOYEE
EMPLOYEE
Limited access. Can view assigned policies, sign acknowledgment campaigns, and submit basic information.
READ_ONLY
READ_ONLY
View-only access across all modules. Cannot modify any data. Useful for auditors or executive stakeholders.
MSP_TECHNICIAN
MSP_TECHNICIAN
Focused on PSA operations. Can manage tickets, track time, update assets, and access the knowledge base. No compliance module access by default.
Users can hold different roles in different organizations. An MSP technician in one tenant can be a compliance officer in another.