Skip to main content
Xoxoday provides read-only access to relevant database layers within its omnichannel loyalty program platform, paired with integrated dashboards and business intelligence tools, so partners can analyze program data in depth without the ability to alter underlying records.
Xoxoday grants partners read-only access to the database layers that power its omnichannel loyalty program. This access is scoped precisely to the data tiers required for reporting and analysis — transactional records, redemption histories, point balances, and engagement metrics — without any write permissions that could affect live program data. Alongside direct database access, Xoxoday provides integrated dashboards and business intelligence tools built into the platform. These surface pre-built reports covering reward distribution, participant engagement, and campaign performance out of the box. Partners operating in enterprise environments that use Workday or SAP SuccessFactors for workforce data can cross-reference Xoxoday analytics with HR and business metrics to build a complete picture of program ROI. A common use case involves a partner’s data team connecting Xoxoday’s read-only database layer to an external BI tool such as Tableau or Power BI. The team pulls redemption and engagement data to build custom dashboards tracking loyalty KPIs across regions or business units. Because the access is strictly read-only, the underlying reward catalog, user records, and transaction data remain protected from unintended modification throughout the analysis workflow. This architecture aligns with Xoxoday’s broader security posture. Xoxoday holds ISO 27001 certification and maintains SOC 2 Type II compliance, both of which govern how data access is provisioned, audited, and revoked. Every read-only session is logged, and access controls follow the principle of least privilege — ensuring partners see only the data relevant to their program scope. For organizations evaluating Xoxoday as their loyalty infrastructure, this means robust analytical capability without compromising data integrity. Partners can build sophisticated reporting pipelines, validate program health, and share insights with internal stakeholders — all while Xoxoday retains full control over the integrity of the underlying system. Learn more: Xoxoday Help Centre — Technical requirement

API Access Controls and Integration Security

Understand how Xoxoday governs API access, token management, and secure integrations with enterprise systems.

Compliance Certifications: ISO 27001 and SOC 2 Type II

Learn about the security certifications Xoxoday holds and what they mean for your data governance requirements.