Trust & Security

Security & Privacy

Your credit data is sensitive. We built ClearPath with security at every layer.

🔐

AES-256 Encryption at Rest

All uploaded files and sensitive fields are encrypted using AES-256. Database-level encryption protects your data even if physical storage were compromised.

🌐

TLS 1.3 In Transit

Every connection to ClearPath is encrypted with TLS 1.3. No data is ever transmitted in plaintext.

🔑

Multi-Factor Authentication

MFA is available for all accounts. Protect your workspace with a second verification step beyond your password.

👤

Role-Based Access Controls

Strict RBAC ensures only authorized personnel can access specific system functions. Every sensitive action is audit-logged.

🛡️

Malware Scanning

Uploaded files are scanned for malware before processing. Infected files are quarantined automatically.

👁️

Sensitive Field Masking

SSNs, account numbers, and other sensitive values are masked by default in the UI. Reveal is logged for audit compliance.

📋

Audit Logging

Every login, data access, document generation, and administrative action is logged with timestamps, IP addresses, and actor identity.

🗑️

User-Controlled Deletion

You can export all your data and request complete account deletion at any time. Deletion requests trigger immediate access lockout and data purge.

Compliance Infrastructure

ClearPath maintains CSRF protection, Content Security Policy headers, rate limiting, secure session management, WAF protection, and secret rotation. Our security architecture follows the principle of least privilege across all administrative roles.