Your data. Your grants. Our responsibility.
Grant applications contain sensitive organizational information. We take that trust seriously β with enterprise-grade security, transparent practices, and independent verification.
Our security commitments.
SOC 2 Type II
We're pursuing SOC 2 Type II compliance with continuous third-party auditing to independently verify our security controls, availability, and data handling practices.
Encryption everywhere
All data is encrypted in transit (TLS 1.2+) and at rest. Your documents, grant applications, and organizational data are protected at every layer.
No AI training on your data
Your content is never used to train AI models β ours or anyone else's. Our AI providers (Anthropic, OpenAI) are contractually prohibited from training on customer data.
Secure infrastructure
Built on trusted cloud infrastructure with role-based access controls, regular security assessments, and automated monitoring for potential threats.
Data minimization
When using AI features, we send only the minimum necessary context to our providers. Your full database is never transmitted β just the relevant portions needed for each request.
Your data, your control
Access, export, or delete your data at any time. We don't hold your data hostage β if you leave, your data goes with you.
Transparency resources.
Everything you need to evaluate our security posture.