Security
Enterprise security for secondary market SaaS
Tenant isolation, least-privilege roles, strong authentication, immutable audit trails, and deal-scoped data room controls, designed for firms with compliance and IT scrutiny.
Overview
Secondary data demands institutional controls
LP information, deal documents, and wire instructions are sensitive. Platforms without tenant isolation, access logging, and role discipline create audit and reputational risk.
Overview
Security embedded in product architecture
secondri enforces permissions server-side on every API route. Investors see only their data. Compliance and IC roles receive least-privilege bundles. Activity is logged for investigations.
- Multi-tenant isolation with organization-scoped data
- RBAC with PE permission bundles and custom role JSON
- 2FA (TOTP) and passkey support
- Immutable activity and audit logs
- Encrypted transport; encryption at rest for stored data
Security capabilities
Authentication
Email verification, password policies, 2FA, passkeys, login history.
Authorization
Granular permissions on deals, data room, fund admin, and portal.
Data room
Watermarked PDFs, party-scoped grants, access logging, lock/share controls.
Audit
Org-wide activity log for admins; personal trails for all users.
Integrations
OIDC SSO for enterprise directory alignment.
Operations
Backup and monitoring tooling for admin/ops teams.
Enterprise review path
- 01
Discover
Review this page and platform module map.
- 02
Document
Request security FAQ and architecture summary from sales.
- 03
Validate
Align RBAC and SSO with your IAM policies.
- 04
Operate
Monitor audit logs and retention policies ongoing.
SOC2-ready posture
secondri is designed with SOC2-ready controls. Contact us for current certification status and customer security packages, we do not overclaim compliance beyond what is verified.
Contact for security reviewCloud
Delivery
Multi-tenant
Architecture
API-ready
Integrations
SOC2-ready
Posture
Frequently asked questions
- Is secondri SOC 2 certified?
- secondri maintains a SOC2-ready security posture. Contact sales for current certification status and audit reports available under NDA.
- How is tenant data isolated?
- All queries are scoped to organization context. Cross-tenant access is prevented at the application and database layers.
- Can investors see other LPs data?
- No. Portal permissions enforce strict investor isolation with server-side 403 on unauthorized access attempts.
See secondri in action
Walk through a sample environment with your workflows, compliance checks, and reporting needs. Our team will tailor the demo to your desk or fund operations model.