Entromy

<a href="#who-this-applies-to">Who this applies to</a>

<a href="#ai-processing-and-data-usage">AI processing and data usage</a>

<a href="#client-data-segregation">Client data segregation</a>

<a href="#access-controls">Access controls</a>

<a href="#data-retention-and-deletion">Data retention and deletion</a>

<a href="#compliance-standards">Compliance standards</a>

<a href="#continuous-monitoring">Continuous monitoring</a>

<a href="#where-to-learn-more">Where to learn more</a>

1. <a href="#who-this-applies-to">Who this applies to</a>
2. <a href="#ai-processing-and-data-usage">AI processing and data usage</a>
3. <a href="#client-data-segregation">Client data segregation</a>
4. <a href="#encryption">Encryption</a>
5. <a href="#access-controls">Access controls</a>
6. <a href="#data-retention-and-deletion">Data retention and deletion</a>
7. <a href="#compliance-standards">Compliance standards</a>
8. <a href="#continuous-monitoring">Continuous monitoring</a>
9. <a href="#where-to-learn-more">Where to learn more</a>

___________________________________________________________

This applies to any user who uploads documents through the Business Context feature — including board decks, value creation strategies, scorecards, and other sensitive portfolio materials.

When Entromy processes your documents using AI, the content is used solely to generate insights for your account.

⚠️ Important: Your documents are never used to train, fine-tune, or improve any AI model — including third-party models. Processing happens in isolated sessions and document content is not retained by AI providers beyond the immediate processing window.

Every client's data is logically isolated within Entromy's infrastructure. Documents uploaded by one firm are never accessible to another.

This segregation is enforced at three layers:

Application layer — access is scoped to your account only

Database layer — data is partitioned by client

Access control layer — permissions are strictly enforced at every level

1. Application layer — access is scoped to your account only
2. Database layer — data is partitioned by client
3. Access control layer — permissions are strictly enforced at every level

Fund A's strategy deck is never visible to Fund B, under any circumstances.

All uploaded documents are encrypted using strong cryptography aligned with NIST SP 800-57 standards. This applies at every stage:

- During upload
- While stored on Entromy's servers
- Throughout AI processing

Entromy also maintains robust cryptographic key management processes covering the full lifecycle of keys — from generation through rotation and retirement.

Information is classified by sensitivity and business criticality. Access to your documents is strictly limited to authorized personnel, governed by Entromy's Access Control Policy.

Entromy is built on secure-by-design and privacy-by-design principles, with least privilege access enforced across all systems and minimal attack surfaces by design.

You stay in control of your documents at all times.

Uploaded files can be deleted at any time from within your account

Deletion is permanent — Entromy does not retain copies after deletion

Data is held only as long as needed to deliver value to your account

- Uploaded files can be deleted at any time from within your account
- Deletion is permanent — Entromy does not retain copies after deletion
- Data is held only as long as needed to deliver value to your account

✅ Tip: If you need to remove documents after a project is complete, you can do so directly from the Business Context section of your account.

Entromy's security program aligns with the following recognized standards:

- ISO 27001:2022
- GDPR
- US data privacy requirements

Security controls are regularly monitored and measured using automated tooling to ensure they remain effective over time. Controls are not static — they are reviewed and updated as part of Entromy's ongoing security program.

For a deeper look at Entromy's security policies, visit <a href="https://trust.entromy.com" rel="nofollow noopener noreferrer" target="_blank">trust.entromy.com</a> to review and download:

- Cryptography Policy
- Secure Development Policy
- Data Management Policy
- Information Security Policy

<a href="#">What is Entromy's privacy policy? How are users ensured confidentiality?</a>

<a href="#">How do I know my answers are secure?</a>

- <a href="#">What is Entromy's privacy policy? How are users ensured confidentiality?</a>
- <a href="#">How do I know my answers are secure?</a>

This article explains how Entromy protects the sensitive documents you upload through the Business Context feature, and what security measures are in place at every stage of processing and storage.

How We Keep Your Portfolio Documents Secure

Privacy Policy

Terms & Conditions

Contact Us

GDPR

Find answers and get help from Intercom Support and Community Experts

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

Advertising cookies are set by our advertising partners to collect information about your use of the site, our communications, and other online services over time and with different browsers and devices. They use this information to show you ads online that they think will interest you and measure the ads' performance. Social media cookies are set by social media platforms to enable you to share content on those platforms, and are capable of tracking information about your activity across other online services for use as described in their privacy policies.

These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.

These cookies are necessary for the website to function and cannot be switched off in our systems.

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Empty Help Center

Uh oh. That page doesn’t exist.

Home

Search results

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

How We Keep Your Portfolio Documents Secure

Table of Contents

Who this applies to

AI processing and data usage

Client data segregation

Encryption

Access controls

Data retention and deletion

Compliance standards

Continuous monitoring

Where to learn more