Tenant-wide knobs: timezone, date/number formats, login policies, session timeout, default permissions, feature flags. Where you configure how the system behaves for your team.
Settings → System.
Default UTC; set to your local TZ so timestamps in reports + audit log read correctly.
DD/MM/YYYY (Africa default) vs MM/DD/YYYY (US). Thousands separator (comma vs space).
How long until a logged-in user is auto-logged-out. Default 12 hours; tighten for high-security tenants.
Password complexity, 2FA-required, max login attempts before lockout.
Beta features you can opt into early (KDS v2, etc.). Off by default.