NXT Enterprises

Audience: Everyone Outcomes: Shared mental model; correct isolation; least-privilege access

Organization (Org) — tenant boundary; owns users, settings, contracts, orders, invoices, disputes, scores.

User — belongs to exactly one org at a time; has a role and KYC status.

Partner link — approved trust relationship between two orgs; required for cross-org contracts.

Contract — structured agreement; lifecycle: draft → review → approve/reject → sign → active.

Order — execution unit under a contract; contains milestones &amp; deliverables.

Milestone — scope + acceptance criteria + (optional) escrow release amount.

Deliverable — uploaded artifact(s) attached to an order/milestone.

Payment — card/bank/crypto transaction recorded against an order.

Escrow — custodial account or smart contract releasing funds by milestone.

Dispute — formal conflict tied to an order; resolved by admin decision.

Invoice — document of record for charges/refunds.

Reputation — per-org score derived from delivery, disputes, refunds.

- Organization (Org) — tenant boundary; owns users, settings, contracts, orders, invoices, disputes, scores.
- User — belongs to exactly one org at a time; has a role and KYC status.
- Partner link — approved trust relationship between two orgs; required for cross-org contracts.
- Contract — structured agreement; lifecycle: draft → review → approve/reject → sign → active.
- Order — execution unit under a contract; contains milestones &amp; deliverables.
- Milestone — scope + acceptance criteria + (optional) escrow release amount.
- Deliverable — uploaded artifact(s) attached to an order/milestone.
- Payment — card/bank/crypto transaction recorded against an order.
- Escrow — custodial account or smart contract releasing funds by milestone.
- Dispute — formal conflict tied to an order; resolved by admin decision.
- Invoice — document of record for charges/refunds.
- Reputation — per-org score derived from delivery, disputes, refunds.

flowchart LR OrgA[Organization A] -- partner link --&gt; OrgB[Organization B] OrgA --- UsersA[Users] OrgB --- UsersB[Users] OrgA &lt;---&gt; Contract OrgB &lt;---&gt; Contract Contract --&gt; Order Order --&gt; Milestone --&gt; Escrow Order --&gt; Deliverable Order --&gt; Payment --&gt; Webhooks[(Provider Webhooks)] Order --&gt; Dispute --&gt; Reputation Order --&gt; Invoice

Every request executes in a single-org context (the org in your session).

Cross-org operations require an active partner link and explicit consent flows.

Reports/exports never cross org boundaries unless both parties allow it.

- UI: Profile → Switch organization
- API: log in to the desired org; the session cookie scopes calls.

Data residency: Org metadata includes region (for storage/invoices). Plan-based options available.

- A user in multiple orgs must switch contexts; there’s no “global” view.
- Attempting cross-org without a partner link returns 403.

- Every request executes in a single-org context (the org in your session).
- Cross-org operations require an active partner link and explicit consent flows.
- Reports/exports never cross org boundaries unless both parties allow it.
- Switching orgs
 - UI: Profile → Switch organization
 - API: log in to the desired org; the session cookie scopes calls.
- Data residency: Org metadata includes region (for storage/invoices). Plan-based options available.
- Edge cases:
 - A user in multiple orgs must switch contexts; there’s no “global” view.
 - Attempting cross-org without a partner link returns 403.

Owner — billing &amp; policies; full access.

Admin — manage users, partner links, KYC, disputes; create/approve contracts.

Member — day-to-day execution: drafts, orders, deliverables.

- Owner — billing &amp; policies; full access.
- Admin — manage users, partner links, KYC, disputes; create/approve contracts.
- Member — day-to-day execution: drafts, orders, deliverables.

Internal IDs: <code>org_123</code>, <code>usr_42</code>, <code>ct_987</code>, <code>ord_456</code>, <code>inv_1122</code>.

Always add a business-meaningful reference for idempotency &amp; reconciliation.

- Internal IDs: <code>org_123</code>, <code>usr_42</code>, <code>ct_987</code>, <code>ord_456</code>, <code>inv_1122</code>.
- Always add a business-meaningful reference for idempotency &amp; reconciliation.

Storing PII in free-text fields (use structured fields).

- Using emails as persistent IDs.
- Storing PII in free-text fields (use structured fields).

Cross-org call without partner link ⇒ 403.

Member cannot access admin-only endpoints ⇒ 403.

Switching org changes visible contracts/orders accordingly.

- Cross-org call without partner link ⇒ 403.
- Member cannot access admin-only endpoints ⇒ 403.
- Switching org changes visible contracts/orders accordingly.

___________________________________________________________

The core entities in TradeOS and how they relate.

Platform Foundations

Find answers and get help from Intercom Support and Community Experts

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

Advertising cookies are set by our advertising partners to collect information about your use of the site, our communications, and other online services over time and with different browsers and devices. They use this information to show you ads online that they think will interest you and measure the ads' performance. Social media cookies are set by social media platforms to enable you to share content on those platforms, and are capable of tracking information about your activity across other online services for use as described in their privacy policies.

These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.

These cookies are necessary for the website to function and cannot be switched off in our systems.

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

Platform Foundations

Glossary (core entities)

Relationships (canonical diagram)

Tenancy & data boundaries

Roles & permissions (RBAC)

Identifiers & references

Anti-patterns

QA checklist