Security at Guardrail
Your financial data is sensitive. We treat it that way. Bank-grade security isn't a feature—it's a requirement.
How We Protect Your Data
End-to-End Encryption
All data is encrypted at rest using AES-256 and in transit using TLS 1.3. Your financial information is never stored in plain text.
Secure Infrastructure
We use enterprise-grade cloud infrastructure with SOC 2 Type II certification. Regular penetration testing and security audits ensure our systems remain protected.
Access Controls
Strict role-based access controls ensure that only you can access your data. Our team cannot view your financial information without explicit permission.
Data Isolation
Each customer's data is logically isolated. Your financial information is never mixed with other customers' data or used for any purpose other than providing your service.
Compliance & Certifications
SOC 2 Type II Compliant
GDPR Compliant
CCPA Compliant
PCI DSS Level 1
Our Security Practices
- Regular security audits and penetration testing
- 24/7 security monitoring and incident response
- Secure development lifecycle (SDLC) practices
- Employee background checks and security training
- Vendor security assessments
- Bug bounty program for responsible disclosure
Your Data, Your Control
We never sell your data. Your financial information is used only to provide you with Guardrail's services. Period.
We never share your data. Your information is not shared with third parties for marketing or any other purposes.
You can delete your data anytime. Request deletion from your dashboard or contact us, and we'll remove all your data within 30 days.
You can export your data. Download a complete copy of all your data at any time from your account settings.
Security Questions?
If you have security concerns or want to report a vulnerability, please contact our security team.
For responsible disclosure: william@getguardrail.app