VADEX
VADEX
NON-NEGOTIABLE

Security Architecture

We isolate your data ensuring that no other tenant, user, or even our own models can access your proprietary Alpha.

Enterprise Security
ENTERPRISE GRADE INFRASTRUCTURE

Security isn't an afterthought.
It's the foundation.

Built for funds that manage billions. We understand that data privacy is an existential requirement, not a feature request.

No Training on Your Data

Your investment memos and private documents are never used to train our models. Your alpha remains exclusively yours.

Zero-Retention AI

Our reasoning engine is stateless. We retain strict audit logs in your secure tenant, but the AI models themselves retain absolutely nothing.

End-to-End Encryption

Data is encrypted in transit via TLS 1.3 and at rest using AES-256. Not even our engineers can access your raw document content.

SOC 2 Type II Infrastructure

Built entirely on Supabase and AWS, inheriting their rigorous, certified physical and logical security controls.

Bank-Grade Data Isolation

We do not rely on standard software logic for security. Your data is strictly segregated at the database engine level, creating a mathematical barrier effectively equivalent to a physically air-gapped server.

  • Impossible for data to cross between Private Equity funds
  • Enforced by Hardened Infrastructure

Zero-Training Policy

Your data room is ephemeral to our inference pipeline. We use stateless API calls to LLM providers with strict Zero-Retention agreements.

  • No Model Fine-Tuning
  • Enterprise API Agreements

SOC 2 Alignment

Our infrastructure is built on Supabase, which is SOC 2 Type II certified. We inherit their rigorous physical and logical security controls.

Data Residency

We utilize AWS regions via our cloud providers. Standard deployment is US-East (N. Virginia), with EU (Frankfurt) options available.

Encryption at Rest

All database volumes and object storage buckets are encrypted using industry-standard AES-256.

Role-Based Access

Granular permissions (Admin, Member, Viewer) enforced at the API level ensure only authorized team members see deal data.

Tenant Isolation

Strict Row-Level Security (RLS) policies mean your data is logically isolated in the database engine itself, not just the application layer.

Encryption in Transit

All traffic between your browser, our API, and the database is secured via TLS 1.3. We do not support non-SSL connections.

Trust is our currency.

Review our full security documentation or schedule a technical deep dive with our engineering team.