Skip to main content
Vision

Why Vision

We do not write competitor battle cards because they go stale and they put the rep in a position they can not verify mid-call. Instead, this page gives you what you actually need: a list of things we did differently with proof links, and a checklist you can use to evaluate any vendor — including us.

What we built differently

Every claim below is implemented in the product today and verifiable on the linked page.

  • Tenant isolation enforced by the database, not the application

    Row-level security policies ship with the schema. A bug in the application code cannot show one shop's customers to another shop because the database refuses to return them. Most SaaS multi-tenancy is application-layer; ours is enforced one layer down.

    See the tenant-isolation control

  • Append-only audit log enforced at the grant level

    Every mutation goes into an audit row. The application role does not have UPDATE or DELETE permission on the audit table — the database refuses, not the code. So a buggy code path cannot rewrite history, and an admin reviewing the trail can trust what they see.

    See the audit-log control

  • Country-aware: pick your country at sign-up, get the right currency, VAT, invoice title, and quarterly export

    Pick from 14 pre-filled countries (UAE, KSA, Bahrain, Oman, Qatar, Kuwait, Egypt, Jordan, UK, Germany, France, Italy, Spain, Netherlands, US) or 'Other' for self-deployers — currency, VAT rate, timezone, tax-registration label, invoice title, and quarterly-export shape all set to sensible defaults you can override. UAE shops get the FTA-shape submission today; UK/EU/US shops get a generic CSV. VAT is snapshotted per visit so a future rate change doesn't rewrite history. Arabic is right-to-left across the entire surface — including the marketing site you are reading.

    See pricing and tiers

  • Public, tiered pricing — no "contact us" wall on the self-serve side

    Tiers 1 through 3 are listed publicly with prices, currency, and limits. Tiers 4 and 5 are sales-led because the configuration genuinely is. You do not have to book a call to find out what the next tier costs.

    See the pricing page

  • Your data, exportable in one click

    Settings → Data has a one-click full-tenant export (CSV or JSON). Customers, visits, line items, audit log — everything. There is no lock-in dressed up as a "migration package". You own your data; we just store it.

    Read the privacy policy

  • MFA mandatory for paid-tier owners, opt-in for everyone else

    Paid-tier OWNERs (T2+) and every member of orgs whose owner has set requires_mfa = true must enrol two-factor authentication; the in-app gate redirects to MFA setup until it's done. Trial-tier OWNERs and unflagged members can opt in. Same TOTP standard used by every other reputable provider — Authy, Google Authenticator, 1Password.

    See the access-control control

Vendor evaluation checklist

Use these questions on every vendor you shortlist — including us. Vague answers are a red flag.

QuestionVision answer
Can a buggy query in your application show my customers to another tenant?

No. Tenant isolation is enforced by row-isolation policies enforced at the database layer. Even with a SELECT * FROM customers query that forgets the tenant filter, the database returns only the active tenant's rows.

See tenant-isolation control

Can your support staff see or modify my data?

Vision ships as a self-deployable application; we do not run a managed shared instance, and Vision SaaS itself does not have ongoing read access to tenant data. Inside your deployment, only members of your own organisation see the data — tenant isolation is enforced at the database layer by row-level isolation policies, not by an honour-system access policy. The OWNER controls who is added.

See tenant-isolation control

Where is my data stored and can I move it out?

A managed relational database with at-rest encryption at the hosting layer; reference deployment runs in a UAE region. One-click full export at any time as CSV or JSON, including audit log and line items. No fee, no "migration package."

See data-residency

How long do you keep deleted customers?

Soft delete keeps the row for audit purposes; the GDPR/PDPL erase action wipes the personal fields immediately and is itself audited. The /settings/data page exposes erase-by-reference for owners.

See compliance

What pricing tier am I on, and when does it change?

Always visible in /settings/billing. Public pricing on /pricing. Tier upgrades take effect on the next billing cycle; no surprise increases.

See pricing

How do I migrate my existing customer book in?

Three importers ship with the product: a flat shop-history importer that accepts the messy real-world Excel export from another POS (one row per visit, NAME / MOBILE / DATE / PRESCRIPTION / DESCRIPTION / AMOUNT) and parses compact prescriptions for you, plus narrower customer-only and visit-only importers if your data is already split. All three preview validation results per-row before anything is written, and every imported visit/customer is logged to the audit trail (visit.imported / customer.imported actions).

Start a free trial to try the importer

Do you support Arabic and RTL natively?

Yes. The customer-facing surface, your invoices, and this marketing site all render natively in Arabic with proper right-to-left layout. Switch from the language toggle in the header.

Try it

What is your incident-disclosure policy?

Vision is currently self-deployed: the operator hosts the application, so an unauthorized-access incident is governed by their own incident-response policy and applicable law (PDPL Art. 9 in the UAE, GDPR Art. 33 for EU-resident data subjects — both require notification within 72 hours of confirmation). For a Vision-managed deployment, the same statutory window applies; we do not yet ship a separate contractual SLA tighter than the law.

See vulnerability-management

If a vendor cannot answer one of these questions on a screen-share in under two minutes, treat it as a red flag.

Vision fits

  • Single optical shop or small chain (1-10 branches)
    Customer book, prescriptions, visits, invoices, inventory, multi-shop tenancy when you grow. The whole product is shaped for this size.
  • Operators in any country with VAT
    Country-aware: pick UAE / Saudi / Jordan / Bahrain / Oman / UK / Germany / France / Italy / Spain / Netherlands / Egypt / US / or Other at sign-up — currency, VAT rate, timezone, and invoice title all set to sensible defaults you can override. UAE shops also get FTA-shape quarterly export today; other countries get a generic CSV (per-country specific shapes are on the roadmap as customers materialise — see the docs).
  • Bilingual (English + Arabic) shops
    AR/EN are both first-class on the marketing site, the app, and the printed receipt. Arabic uses Cairo type with proper RTL layout — written in Arabic, not translated.
  • Owners who want to self-evaluate
    T1 free tier with full feature access on a single shop, public pricing, one-click export. You do not need a sales call to start.

Vision is not the right fit for

  • Hospital optical departments (50+ users, EHR integration)
    We do not integrate with hospital information systems and we do not have the role-granularity hospital governance requires.
  • E-commerce-first frame retailers
    We are walk-in-shop shaped (visit ledger, in-person prescriptions). If 90% of your sales are online, a Shopify-shaped tool will fit better.
  • Operators who need country-specific tax submissions today
    Vision generates a generic quarterly VAT CSV for non-UAE shops out of the box, and the UAE FTA-shape submission is fully wired. The country-specific submission shapes (UK Making Tax Digital JSON, KSA ZATCA Phase II e-invoicing XML, EU OSS, etc.) are on the roadmap and will be built when a paying customer in that jurisdiction asks. We are honest about which shapes exist today rather than promising a date we cannot keep.

If you are in one of these buckets, we will tell you on the first call. We would rather lose a deal than sign a customer who churns in three months.

Try it for yourself

T1 is free and the export is one click. The fastest way to evaluate a SaaS is to use it.

Start for freeTalk to salesSecurity details

Tip: this page is print-friendly. Save it as PDF to attach to a vendor questionnaire.

Why Vision · Vision