Everything included
Every tool you need.
Nothing you don't.
A focused platform for people who handle sensitive, structured work. No feature bloat, no add-ons — everything below is included on the free tier.
Core platform
Built around how you actually work
Case management
Create structured case records with titles, descriptions, status, priority, and tags. Assign team members with specific roles and keep everything organized in one controlled workspace.
File management
Upload, annotate, and organize documents within each case. Per-file access controls let you decide who can see what. Every file access is logged with who and when.
Contact management
Store structured contact information and link contacts to one or more cases. Keep relationships visible across all your matters so nothing falls through the cracks.
Internal messaging
Secure messaging between team members — completely separate from email, logged as part of the case record, and kept inside your workspace where it belongs.
Notifications & reminders
Stay on top of case activity with notifications for new actions, file uploads, and team updates. Set reminders for important deadlines so nothing slips.
Search
Find cases, files, contacts, and activity across your entire workspace instantly. Powerful full-text search that respects your access permissions.
Security first
Security controls you can actually see
Every security feature is visible, configurable, and documented — not hidden away in a settings menu you'll never find.
Two-factor authentication
TOTP-based 2FA compatible with Google Authenticator, Authy, and similar apps. Full hardware security key support via WebAuthn/FIDO2. Both methods available on every account.
Full audit trail
Every login attempt, file access, case action, role change, and permission update is logged with a timestamp, user identity, and context. Immutable, reviewable, always on.
Role-based access (RBAC)
Granular permissions at the case level. Assign specific roles to team members — read-only, editor, manager — with inheritance and override support per case.
CSRF & session protection
All forms carry CSRF tokens. Sessions expire automatically on inactivity. Password reset flows are time-limited and single-use.
Password security
Passwords are stored using bcrypt hashing — never in plain text, never reversible. Password strength requirements enforced on all accounts.
Transport encryption
All connections to Herarx are encrypted in transit using TLS. No data travels unencrypted between your browser and our servers.
Files encrypted at rest
Uploaded files are encrypted at rest and stored on a dedicated file server in a different geographic location from both the database and web server. Even if one layer is compromised, your files remain isolated.
Collaboration
Work together, stay in control
Every collaboration feature in Herarx is designed so you never lose visibility over what your team is doing.
Team workspaces
Invite colleagues to your organisation and assign them to cases with the right roles. Keep private cases private and shared cases visible to the right people.
Secure case sharing
Share specific cases or files with external parties via secure, time-limited links — with controls over what they can see and do.
Tasks & checklists
Create tasks within cases, assign them to team members, and track completion. Keep everyone aligned on what needs to happen next.
Honest limitations
What we don't yet have
We'd rather be upfront about gaps than oversell. These are real limitations we're actively working on.