Every layer of Shortlist is designed with security, privacy, and compliance as foundational requirements — not afterthoughts.
All data encrypted in transit
Data encrypted at rest
Via Stripe certified processor
Full data subject rights support
Audit in progress — Q3 2026
Planned for 2027
Your data is encrypted at every stage of its lifecycle.
Fine-grained permissions at every layer of the platform.
Built on proven, managed infrastructure.
Your data stays yours. We take privacy seriously.
Our AI pipeline is designed with security-first principles.
Every action is logged. Every decision is traceable.
We maintain comprehensive compliance documentation aligned with international regulatory frameworks.
Our team is available to discuss specific security requirements, share our SOC 2 audit timeline, or provide additional documentation for your security review.