105 audit checks across data quality, security, compliance, performance, and schema health. Vertical-aware — auto-detects NPSP, FSC, Health Cloud, and 11 more Salesforce products. Powered by Pathfinder, our Rust + DuckDB audit engine. All data stays local.
Most migration projects discover data quality issues, security gaps, and compliance problems after they've already started. By then, it's expensive to fix.
Empty required fields, invalid picklist values, orphaned records, and duplicate data discovered mid-migration. Each one a potential showstopper.
Inactive users with permissions, excessive admin access, exposed PII fields. Problems you inherit if you don't find them first.
500 custom fields, 200 Apex classes, 50 Flows. Understanding the true complexity before you commit prevents budget overruns.
The same thoroughness as Salesforce Shield and Own Secure, built into our Rust-powered tooling. Faster, cheaper, and you own the results.
We analyze every object for data quality issues that would cause problems in your target system. Not sampling—complete analysis.
// Sample Data Quality Finding { "id": "DQ-REQ-Contact-Email", "severity": "warning", "category": "Data Quality - Required Fields", "title": "Contact.Email missing in 2,847 records", "object": "Contact", "count": 2847, "remediation": "Populate emails before migration" }
Comprehensive security audit covering user access, permissions, and authentication. Find the gaps before they become breaches.
// Sample Security Finding { "id": "SEC-ADMIN-COUNT", "severity": "warning", "category": "Security - Privileged Access", "title": "23 System Administrators", "description": "Principle of least privilege recommends minimizing admin access", "count": 23, "remediation": "Review admin users and migrate to custom profiles" }
PII/PHI detection, field history tracking gaps, and data retention analysis. Essential for GDPR, CCPA, and HIPAA compliance.
// Sample Compliance Finding { "id": "COMPL-PII-DETECTED", "severity": "warning", "category": "Compliance - Data Classification", "title": "47 potential PII fields detected", "samples": [ "Contact.SSN__c", "Account.Tax_ID__c", "Lead.Date_of_Birth__c" ], "remediation": "Review for encryption and retention" }
Full inventory of your customizations: objects, fields, Apex, Flows, triggers, validation rules. Know exactly what you're migrating.
// Sample Schema Finding { "id": "SCHEMA-APEX-HIGH", "severity": "warning", "category": "Schema - Custom Code", "title": "247 Apex classes (42,000 LOC)", "description": "Significant code review needed for migration", "object": "ApexClass", "count": 247, "remediation": "Document business logic for recreation" }
Large data volumes, wide objects, governor limit proximity. Know your performance constraints before they become migration blockers.
// Sample Performance Finding { "id": "PERF-LDV-CRITICAL", "severity": "critical", "category": "Performance - Large Data Volume", "title": "3 objects exceed 10M records", "samples": [ "Task: 47M records", "Activity: 23M records", "Custom_Log__c: 12M records" ], "remediation": "Plan bulk API with archival strategy" }
The same audit capabilities as the major players, without the vendor lock-in or ongoing subscription costs.
| Capability | Colby's Audit Suite | Own Secure | Salesforce Shield |
|---|---|---|---|
| Data Quality Audits | Full | Full | Limited |
| Security Analysis | Full | Full | Full |
| PII/PHI Detection | Included | Included | Included |
| Schema Complexity | Full | Basic | No |
| Performance Analysis | Full | Limited | Limited |
| Migration Readiness | Yes | Limited | No |
| One-Time Assessment | Yes | Subscription | Subscription |
| Report Ownership | Yours Forever | Platform Access | Platform Access |
Not just findings—a prioritized remediation roadmap with specific guidance for each issue.
{
"summary": {
"score": 67,
"health_status": "Fair",
"critical_count": 3,
"warning_count": 12,
"info_count": 28,
"checks_run": 105,
"clouds_detected": ["Sales Cloud", "Nonprofit (NPSP)"],
"domains": ["Data Quality", "Security", "Compliance", "Schema", "Performance"]
},
"recommendations": [
{
"priority": 1,
"title": "Address 3 Critical Issues Before Migration",
"effort": "High",
"impact": "Migration Blocker"
},
{
"priority": 2,
"title": "Data Cleanup Project - 12 Quality Issues",
"effort": "Medium",
"impact": "Data Integrity"
}
],
"findings": [/* 43 detailed findings with remediation... */]
}
Provide read-only access via SF CLI. We never modify your data.
105 checks execute in seconds. Pathfinder extracts your metadata into DuckDB, auto-detects which Salesforce clouds are installed, and runs the full check suite locally. Zero data leaves the machine.
Human analysis of findings, false positive filtering, priority assignment.
Branded HTML report with health score, JSON data export, Markdown summary, prioritized remediation roadmap, compliance gap analysis, and a review session.
The audit suite runs on Pathfinder — our Rust-native data intelligence platform. DuckDB for sub-second analytical queries. Parallel extraction. Cloud-specific check modules. Compliance framework mapping. All offline, all local.
Across 5 domains — Data Quality, Security, Compliance, Schema & Metadata, Performance. Plus vertical-specific checks for Nonprofit, Sales Cloud, Service Cloud, and more.
Auto-detects NPSP, Financial Services Cloud, Health Cloud, Education Cloud, CPQ, Marketing Account Engagement, Manufacturing Cloud, and 7 more. Each cloud activates specialized checks.
Findings map to SOX 404, HIPAA, GDPR, GLBA, PCI-DSS, FERPA, SOC 2, NIST CSF, and CIS Controls. Gap analysis per framework on demand.
Get a complete picture of your Salesforce org's health — whether you're planning a migration, onboarding a new admin, or just want to know where you stand. 105 checks. 9 compliance frameworks. Zero data leaves the machine.
Schedule Your Assessment tyler@colbysdatamovers.com