Enterprise security at every tier
Your fund data is sensitive. We treat it that way. FundFox maintains the highest security standards so you can focus on investing.
SOC 2 Type II
Audited security controls and processes
GDPR
Full EU data protection compliance
ISO 27001
Information security management
CCPA
California privacy protection
Security infrastructure
Built on enterprise-grade security from day one
Encryption
- AES-256 encryption at rest
- TLS 1.3 encryption in transit
- End-to-end encrypted backups
- Hardware security modules (HSM)
Infrastructure
- AWS/GCP enterprise hosting
- EU and US data centers
- 99.99% uptime SLA
- Automatic failover
Access Control
- Role-based permissions
- SSO/SAML integration
- Two-factor authentication
- Session management
Monitoring
- 24/7 security monitoring
- Intrusion detection
- Real-time alerting
- Comprehensive audit logs
Your data is yours
We believe you should own your data completely. Export anytime, delete anytime. We never sell, share, or use your fund data for anything other than providing you with our services.
Security FAQ
Where is my data stored?
Your data is stored in enterprise-grade data centers in the EU (Frankfurt) or US (Virginia), depending on your preference. All data is encrypted at rest and in transit.
Can I export my data?
Yes, you can export all your data at any time in standard formats (CSV, JSON). We never lock you in.
Do you use my data to train AI models?
No. Your fund data is never used to train our AI models. Your data is yours, and we use it only to provide you with our services.
How do you handle security incidents?
We have a comprehensive incident response plan. Any security incidents are communicated to affected customers within 72 hours, as required by GDPR.
Do you perform penetration testing?
Yes, we conduct annual third-party penetration tests and continuous vulnerability scanning. Results are available upon request for enterprise customers.
Have security questions? Our team is happy to help.
Contact Security Team