LPs entrust us with sensitive fund data, GP relationships, and investment pipelines. That trust depends on us handling information properly at every layer.

This page is where we show our work. It covers the controls we operate, the standards we're certified against, the subprocessors we rely on, and the practices we follow to keep customer data confidential, available, and intact.

If you need something that isn't published here - SOC reports, DPAs, penetration test summaries - request access below.

Founded in 2024

|

Compliances

Compliance Logo

SOC 2

Compliant

Compliance Logo

ISO 27001 v2022

Certified

Compliance Logo

ISO 27001

Certified

Controls

Product security

Production System User Review

Situational Awareness For Incidents

Vulnerability Remediation Process

Data security

Identity Validation

Termination of Employment

Production Databases Access Restriction

Network security

Impact analysis

Limit Network Connections

External System Connections

App security

Conspicuous Link To Privacy Notice

Unauthorized Activities

Endpoint security

Malicious Code Protection (Anti-Malware)

Full Device or Container-based Encryption

Endpoint Security Validation

Corporate security

Code of Business Conduct

Organizational Structure

Roles & Responsibilities

Resources

Acceptable Usage Policy

Policy

Access Control Policy

Policy

Access Control Procedure

Policy

Asset Management Policy

Policy

Asset Management Procedure

Policy

Code of Business Conduct Policy

Policy

Subproviders

Subprocessor Logo

Railway

IT infrastructure

Netherlands

Subprocessor Logo

Auth0

Security Software

Germany

Subprocessor Logo

Supabase

IT infrastructure

Germany

Subprocessor Logo

Mailgun by Sinch

IT infrastructure

Belgium

Subprocessor Logo

LlamaCloud

AI subprocessor

Artificial Intelligence

Subprocessor Logo

Google Gemini

AI subprocessor

Artificial Intelligence

Germany

Create your own Trust Center | Powered by

Sprinto Logo