Built to protect a regulated business
Spirit Sight holds compliance-critical records and inventory worth millions. Access is controlled, every change is accountable, and you can run it on your own servers if you need to.
The right people, the right data
Role-based access
Granular roles with module-level permissions, scoped per campus so users see only their sites.
Two-factor authentication
Optional TOTP two-factor with backup codes and lockout after repeated failed attempts.
Scoped API keys
API access uses scoped, rate-limited keys (read or read/write), separate from user logins.
Every change, on the record
Immutable audit trail
Every create, update, and delete is logged with the user, timestamp, and IP - sensitive fields redacted.
Column-level change tracking
Compliance-critical tables record the before and after of every changed field, grouped by transaction.
Reconciliation invariants
Standing checks keep operations and the general ledger in agreement, so tampering or drift shows up.
Your data, your environment
On-premise or cloud
Run hosted, or deploy the self-hosted Docker stack in your own infrastructure.
Automated backups
Scheduled database backups with daily, weekly, and monthly retention.
Export anytime
Your data exports to CSV and accounting formats whenever you want it. No lock-in. See integrations.
Encrypted secrets & rate limiting
Sensitive values are encrypted at rest, and per-user and per-IP rate limits protect the API.
Common questions
Is Spirit Sight SOC 2 certified?
Can it run on our own servers?
How is access controlled across campuses?
See your distillery in Spirit Sight
Book a walkthrough with our team. We’ll show your operation - barrels, TTB, and the books - in one place.
Schedule a Demo