Security
Enterprise-grade security for sensitive financial data. We handle your data with the same care you would.
Features
Security by design
Encryption
- AES-256 encryption at rest
- TLS 1.3 encryption in transit
- End-to-end encryption for sensitive documents
Infrastructure
- AWS GovCloud available
- SOC 2 Type II certified
- GDPR compliant data handling
Access Control
- Cryptographic access controls
- Role-based permissions
- Multi-factor authentication
Audit
- Full access audit logs
- Immutable audit trail
- Third-party security audits
Confidential Compute
Your sensitive data is processed in secure enclaves. Even Lodestar analysts cannot see raw inputs — only the computed outputs needed for valuation.
Encrypted Processing
Data remains encrypted during computation
Isolated Environments
Each engagement runs in isolated compute
Verifiable Outputs
Cryptographic proof of computation integrity
Compliance
Certifications & compliance
SOC 2 Type II
In Progress — Q3 2026
ISO 27001
Planned — 2027
GDPR Compliant
Active
CCPA Compliant
Active
Data Handling
How we handle your data
What we collect
- Financial statements and metrics you share
- Cap table information for analysis
- Supporting documents you provide
What we never do
- ✕Sell or share your data with third parties
- ✕Use your data to inform other valuations
- ✕Retain data beyond engagement + audit period
Questions about security?
Request a security review or speak with our security team.