Your data security is our top priority. We employ industry-leading security measures to protect your sensitive financial information.
Data encrypted in transit (TLS 1.3) and at rest (AES-256) across our platform.
Independently audited to SOC 2 Type II, with ongoing third-party security assessments. Review our controls in the Trust Center.
Multi-factor authentication, SSO support, and role-based permissions for granular access control.
Hosted on AWS with VPC isolation, private subnets, and network segmentation
AWS Shield and CloudFront for distributed denial-of-service attack mitigation
AWS WAF protection against common web exploits and vulnerabilities
Daily automated backups with point-in-time recovery capabilities
Security review at every stage of development with automated vulnerability scanning
Rate limiting, API key rotation, and OAuth 2.0 authentication
Secure session handling with automatic timeout and re-authentication
Comprehensive input validation and sanitization to prevent injection attacks
Continuous monitoring with AWS GuardDuty and CloudTrail for threat detection
Comprehensive audit trails for all system access and data operations
Annual third-party penetration testing and vulnerability assessments
24-hour response team with documented incident response procedures
Logical separation of customer data within our managed AWS environment, encrypted at rest
Full compliance with data protection regulations including right to deletion
We only collect and retain data necessary to provide our services
Your data is never sold or shared with third parties for marketing purposes
Customer data is stored in AIQ-managed AWS and is never used to train models. We rely on a small set of vetted third-party subprocessors:
Our security team is here to answer any questions about our security practices and compliance.
Contact Security Team