Enterprise Readiness

Enterprise & IT Allowlist Guide

Security posture and network behavior for controlled enterprise rollout.

DocSmith is a local-first utility for generating UAE WPS SIF files. Processing occurs in the user browser and avoids server-side payroll data handling.

Product OverviewSecurity Whitepaper

Rollout checklist

  • Allowlist production domain.
  • Review local-processing data posture.
  • Confirm extension policy with browser admins.
Uploaded files
0

No payroll files are uploaded by design.

Analytics mode
Minimal

Aggregated usage events only. No ad trackers or retargeting pixels.

Allowlist domains
1

Primary production endpoint only.

Who this is for

  • Accounting firms running multi-entity payroll operations.
  • HR and finance teams with managed browser environments.
  • IT/security teams reviewing data-residency and allowlist posture.

Allowlist rollout steps

  1. Allowlist `https://www.docsmith.tools` for approved teams.
  2. Review whitepaper and extension manual with security owners.
  3. Publish extension install policy to payroll operators.
  4. Validate pilot output before full operational rollout.

Data posture

  • No files are uploaded.
  • No server-side processing.
  • No storage of payroll data.
  • Runs entirely in the browser.

Network behavior

  • Privacy-first usage analytics (aggregated events only).
  • No advertising trackers or retargeting pixels.
  • No payroll file content is sent for analytics.

Domains to allowlist

https://www.docsmith.tools

Related references

WPS explainedSIF file format

Contact

Support / report issue response target: within 1 business day.

support@starwealthdynamics.org
Operational responsibility remains with each employer and internal compliance owner.
Local-Only Mode Active
CSP: connect-src 'self' [LOCKED]