Security & Compliance

Enterprise-grade security.
Your data stays yours.

Built from day one with financial-grade data protection. Multi-tenant isolation at the database level — not the application level.

AES-256 EncryptionAt rest & in transit
SOC 2 Type II InfraSupabase certified
RLS Isolation18+ enforced tables
TLS 1.2+All API connections
Architecture

Security by design, not by patch.

Data Isolation

Multi-Tenant Isolation

PostgreSQL Row-Level Security (RLS) enforced on 18+ tables. ISO A's proprietary lender data is cryptographically invisible to ISO B. This isn't application-level filtering that can be bypassed — it's database-level enforcement.

  • Every query scoped by organization ID at the Supabase layer
  • Even application-level bugs cannot bypass database isolation
  • Cryptographic separation between all tenant data
Org A
RLS
Org B
Access Control

Role-Based Permissions

Three granular permission levels control who sees what across your organization. Brokers never see commission data they shouldn't. Permission checks happen at both the API route level and the database level for defense-in-depth security.

  • Owner — billing, team management, full configuration
  • Admin — lender settings, pipeline config, reporting
  • Rep — deal submission, pipeline access, scoped visibility
OwnerAdminRep
Pipeline access
Submit deals
Lender config
View commissions
Team management
Billing & export

Complete Audit Trail

Every action on every deal is timestamped, attributed, and stored in an append-only log. Submissions, lender responses, document uploads, AI scoring events, notes, and calls — all traceable. The audit log cannot be edited or deleted by any user, including organization owners.

GDPR & CCPA Compliance

Full data export on demand. Data deletion requests honored within required CCPA timeframes. Configurable retention policies per organization. Know exactly what data is stored, where it's processed, and how long it's retained. Full deletion available on churn — no data hostage scenarios.

Data Boundaries

Your competitive edge stays
yours alone.

We share only anonymized market trends across the platform — never your relationships, deals, or strategy.

01

We share only the averages

Cross-platform insights draw from aggregated approval ranges and industry-wide volume trends. No individual deal, merchant, or organization is ever identifiable.

02

We never expose your book

Lender contacts, commission structures, submission pipelines, and deal-level outcomes remain sealed to your tenant. Other brokers cannot see or infer them.

03

We never train on your playbook

Your approval patterns and lender preferences never feed models for other organizations. No cross-tenant scoring, no shared blacklists, no sold insights.

Infrastructure

Built on trusted foundations.

Supabase (PostgreSQL)SOC 2 Type II certified database hosting with automatic backups and point-in-time recovery.
Vercel Edge NetworkGlobal CDN with automatic SSL, DDoS protection, and 99.99% uptime SLA.
AES-256 at RestAll data encrypted at rest using AES-256 industry-standard encryption.
TLS 1.2+ in TransitAll API communication, file transfers, and client connections encrypted with TLS 1.2 or higher.
Brute-Force ProtectionLogin rate limiting, account lockout after failed attempts, and suspicious activity monitoring.
Daily Automated BackupsAutomated daily backups with point-in-time recovery. Infrastructure managed by Supabase with SOC 2 compliance.
Document Vault

Bank statements deserve bank-grade protection.

Merchant bank statements contain the most sensitive business data. YieldStream treats them accordingly.

All uploaded documents encrypted with AES-256 at rest
Scoped to organization — no cross-tenant access possible
Secure token-gated upload links for merchant self-service
Automatic file type validation — PDF, IMG, DOCX only
Configurable retention policies for compliance requirements
Full access audit trail — every view and download logged
Data Trust

Your data stays yours.

Your lender list is proprietary. No data resale. No shared blacklists. Full export anytime.

01
We don’t own your relationships

Your lender contacts, submission history, and pipeline are yours — we never reach out to your funders or merchants.

02
We don’t sell your data

No data resale, no shared blacklists, no monetizing your deal flow behind your back.

03
You can leave with everything

Full data export anytime. No lock-in, no hostage negotiations. Your business stays portable.

Incident Response

Security incidents are triaged within 24 hours with affected organizations notified per our incident response policy. Dedicated security contact for enterprise accounts.

Data Retention & Deletion

Configurable retention policies per organization. Full data deletion on request within CCPA-required timeframes. When an org churns, all data can be permanently purged — no residual copies.

Questions about our security posture?

We provide security documentation, architecture walkthroughs, and can discuss enterprise requirements including custom DPAs.

Contact Security TeamView Documentation