Bank-level security

Your data is
safe with us

We know your investor updates contain sensitive business information. That's why security isn't an afterthought — it's built into everything we do.

Protected at every layer

Multiple layers of security ensure your sensitive business data stays safe

Encryption everywhere

All data is encrypted at rest using AES-256 and in transit using TLS 1.3. Your sensitive business information never travels unprotected.

SOC 2 Type II infrastructure

We use Supabase for data storage, which maintains SOC 2 Type II certification. Your data lives in enterprise-grade, audited infrastructure.

No AI training on your data

We use Anthropic's Claude for AI processing. Anthropic does not train models on API inputs, and your data is processed then discarded — never stored by the AI.

Password-protected reports

Pro plan includes password protection for reports. Passwords are hashed using bcrypt with 10 rounds — we never store plain text passwords.

Row-level security

Database access is controlled at the row level. Users can only access their own data. Even if there were a breach, data isolation prevents cross-account access.

Anonymized analytics

Report view analytics use hashed IP addresses. We track engagement without compromising viewer privacy. You get insights; your investors stay anonymous.

Our security stack

We partner with industry leaders to keep your data secure

S

Supabase

Database and authentication with SOC 2 Type II compliance, row-level security, and automatic backups

A

Anthropic

AI processing with strict data handling — no training on customer data, SOC 2 Type II certified

V

Vercel

Application hosting with automatic HTTPS, DDoS protection, and global edge network

Security practices

How we maintain security across the organization

Regular security audits

We conduct regular security reviews and stay current with security patches.

Minimal data collection

We collect only what we need to provide the service. No unnecessary tracking.

Secure development

Our code follows secure development practices and undergoes review before deployment.

Incident response

We have procedures in place to respond quickly if a security issue is discovered.

Found a security issue?

We take security vulnerabilities seriously. If you've discovered a potential security issue, please report it responsibly.

Report a vulnerability

Email: security@venturereports.ai

Security FAQ

Is my data used to train AI models?

No. We use Anthropic's Claude API, which does not train on customer inputs. Your reports are processed to generate layouts, then the data is discarded by Anthropic. We also don't use your data to train any other models.

Where is my data stored?

Your data is stored in Supabase's infrastructure, which uses AWS data centers. Data is encrypted at rest and in transit. Supabase maintains SOC 2 Type II certification.

Can Venture Reports employees access my reports?

Access to customer data is strictly limited and logged. We only access customer data when necessary for support purposes with explicit permission, or when required by law.

What happens when I delete my account?

When you delete your account, all your data (reports, profile information, and analytics) is permanently deleted within 30 days. Backups are also purged according to our retention policy.

Do you have a SOC 2 report?

As a growing startup, we don't yet have our own SOC 2 certification. However, our key infrastructure providers (Supabase, Anthropic, Vercel) all maintain SOC 2 Type II compliance. Contact us if you need documentation for your security review.

← Privacy PolicyTerms of Service →