Active–Passive Warm Standby
- Target RTO
- 10–15 minutes (automated)
- Target RPO
- Near-zero (sub-second)
- Data Tier
- Amazon Aurora PostgreSQL Serverless v2 Global Database, cross-region replication
Technical Specifications
Engineered for the realities of aviation catering.
Galley X is multi-tenant SaaS on AWS with per-tenant data isolation, 99.99% uptime, and compliance frameworks that match real audit conditions. Every capability described below is delivered today.
99.99% Uptime target
SOC 2 Type II audited
AWS Cloud-native SaaS
Per-tenant Data isolation
Architecture
Platform architecture
- Hosting
- Amazon Web Services, 99.99% uptime target
- Backend services
- Node.js + Express, containerized on Amazon ECS Fargate with images in ECR
- Database
- Aurora PostgreSQL Serverless v2, dedicated per tenant for isolation
- Caching
- Amazon ElastiCache (Redis) for session and hot-path data
- Eventing
- Amazon EventBridge, Lambda, SQS, and SNS for event-driven workflows
- Storage
- Amazon S3 for documents, exports, and binary artifacts
- Network
- Application Load Balancer with TLS termination and per-tenant VPC isolation
- Frontend
- React for web; React Native for iOS and Android mobile clients; AWS Amplify for delivery
Security & Compliance
Security and compliance
- SOC 2 Type II
- Independently audited controls across security, availability, and confidentiality
- GDPR
- Alignment with Standard Contractual Clauses for cross-border transfer
- FSMA 204
- Traceability — Critical Tracking Events and Key Data Elements captured across the catering chain
- HACCP
- Aligned food-safety records, inspections, and corrective-action workflows
- Authentication
- SAML and OIDC SSO with MFA enforced for production access
- Encryption
- TLS in transit; AWS KMS / AES-256 at rest; per-tenant key separation
- Secrets
- AWS Secrets Manager with rotation policies
- Audit
- CloudTrail and in-product audit logs for every privileged action
Reliability
Reliability and disaster recovery
- Uptime target
- 99.99%
- Observability
- CloudWatch metrics + alarms, X-Ray tracing, structured application logs
- Backups
- Point-in-time recovery on Aurora, cross-region S3 replication for critical artifacts
Multi-region disaster recovery options
Active–Active Multi-Region
- Target RTO
- ~5 minutes (automated)
- Target RPO
- Near-zero (sub-second)
- Data Tier
- Amazon Aurora PostgreSQL Serverless v2 Global Database, cross-region replication
Times listed above reflect configuration design targets under normal cloud infrastructure operating conditions.
Delivery
Delivery and engineering
- CI/CD
- GitHub Actions with blue/green deployment to ECS Fargate
- Infrastructure-as-code
- AWS CDK
- Release model
- Continuous delivery with feature flags, staged rollouts, and automated rollback
- Environments
- Development, staging, and production environments per tenant cohort
APIs
APIs and integration
- REST APIs
- Inbound passenger and special-meal data; outbound invoice and reconciliation records
- Event hooks
- Webhooks and EventBridge events for production, uplift, inventory, and compliance milestones
- SSO
- SAML / OIDC for identity-provider-managed user lifecycle
- Exports
- Reporting via S3-backed scheduled deliveries and on-demand downloads
Move forward
Ready to go deeper on architecture or security?
Book time with our team or explore how each Galley X module connects across the catering lifecycle.