Outpost is a native SuiteApp. Your data never leaves your NetSuite account except to land in destinations you own and control. Here's how that works in practice.
Outpost runs as a SuiteApp inside your NetSuite account. There is no middleware server, no shadow copy of your data, and no third-party broker sitting between NetSuite and your destinations. Exports execute under NetSuite's own governance and permission model — the same controls your auditors already trust.
Outpost reads only the saved searches you explicitly point it at and writes to destinations you own (your SharePoint, your S3 bucket, your data warehouse, your SFTP). We do not copy, cache, or relay your business records through Vo Consulting infrastructure. If you uninstall the SuiteApp, the data flow stops immediately and nothing of yours remains on our side — because nothing of yours was ever on our side.
Destination credentials (API keys, OAuth tokens, SFTP passwords) are stored using NetSuite's encrypted credential fields and the N/https module's secure handling. Secrets are never written to script logs, never returned to the UI in plain text, and only decrypted at the moment a job runs. Access is scoped to the specific script that needs it.
Outpost ships with a recommended role that grants only the permissions required to read the searches and execute the destinations you've configured — nothing more. You control which users can create, edit, or run export jobs through standard NetSuite role and permission assignments.
Every export run is logged inside NetSuite: who triggered it, which search ran, which destination it landed in, how many records moved, and whether it succeeded. Failures surface in the same place your team already monitors script execution. There is no separate dashboard you have to learn or trust.
All outbound connections — to SharePoint, S3, Snowflake, BigQuery, SFTP, webhook endpoints — use TLS. Outpost will refuse to fall back to unencrypted transport. Where a destination supports it (e.g. SFTP key-based auth, OAuth 2.0), we prefer those mechanisms over static passwords.
Vo Consulting Inc. is a Canadian company based in British Columbia. Our internal systems use SSO, MFA, and least-privilege access. Customer contact information submitted through outpost.voconsulting.ca is held on infrastructure operated by reputable providers in Canada and the United States, with encryption at rest and in transit.
If you believe you've found a security issue in Outpost or on outpost.voconsulting.ca, please email security@voconsulting.ca with details and steps to reproduce. We'll acknowledge within two business days, keep you informed as we investigate, and credit you in release notes if you'd like.
Security or compliance reviewer working through a vendor assessment? Email security@voconsulting.ca and we'll get you what you need — architecture diagrams, role definitions, sample logs, and answers to your questionnaire.