Trust Center
Enterprise trust surface.
This page consolidates the security, privacy, data ownership, decision intelligence governance, accessibility, and support commitments our enterprise customers rely on. This page is maintained by Revenue Intelligence and is not an independent certification.
Security
Enterprise-grade platform security.
Platform
Hosting
Managed cloud hosting with ISO 27001–certified providers.
Encryption in transit
TLS 1.2+ on every endpoint.
Encryption at rest
AES-256 for database and object storage.
Access control
Role-based access (Business Owner, Advisor, Org Admin, Platform Admin) enforced at the database row-level.
Governance
Audit logging
Immutable, append-only. Sensitive actions written on every write.
Session policy
Configurable session timeouts. MFA available for admin roles.
Backups
Automated point-in-time backups. Recovery objectives documented per tier.
Incident response
Enterprise SLA on request. Security contact provided on engagement.
Privacy
Data collection and processing.
Platform
Regulatory posture
Aligned with the Philippine Data Privacy Act (RA 10173) and GDPR principles.
Data collected
Business profile, self-reported financial context, Business Performance Review responses.
Lawful basis
Contract with the customer organization; consent from the business owner.
Retention
Data retained for the contract term plus the retention window defined in the DPA. Deletion on request.
Governance
Cross-org sharing
Never. Individual business data does not cross organizational boundaries.
Anonymized aggregates
Benchmarks use anonymized, aggregated data with small-n suppression.
Subprocessors
Cloud hosting, model providers, and email delivery — full list available under the DPA.
Data subject requests
Access, correction, deletion honored per policy.
Data ownership
You own your business data.
Decision intelligence governance
How automated drafting is governed.
Platform
Model routing
Prompts and models are versioned. Each generated report records prompt version, model, and parameters.
Human review
Every Business Performance Report is professionally reviewed before release.
Evidence-linked
Every score, business category, and recommendation links to specific responses in the review.
Not for training
Customer data is not used to train third-party models.
Governance
Guardrails
Controlled catalogs for business categories and structured JSON outputs — no free-form advice generation.
Confidence bands
Every score is reported with a confidence band and required evidence coverage.
Disclosure
Every published report carries an automation disclosure and review reference.
Right to review
Business owners and org admins can request advisor review of any published output.
Accessibility
Working toward WCAG 2.1 AA.
The platform is designed against the Web Content Accessibility Guidelines 2.1 AA. Executive dashboards use semantic HTML, keyboard navigation, visible focus states, and text contrast ratios reviewed against AA thresholds. Known gaps are tracked publicly with remediation dates.
Localization: English is generally available. Filipino is on the accessibility roadmap. Accessibility issues can be reported to the enterprise success contact.
Enterprise support
Tiers, response times, and success.
Platform
Standard
Business-hours support (PH time). 1 business day first response.
Priority
Extended-hours support. 4-hour first response for Severity 1 and 2 issues.
Enterprise
24×7 for Severity 1. Named customer success executive. Quarterly executive review.
Governance
Onboarding
Guided implementation, business intake, cohort configuration, advisor training.
Training
Role-based training for Org Admin, Advisor, and Business Owner.
Success metrics
Quarterly review of adoption, reassessment cadence, and measured overall business health delta.
FAQ
Frequently asked questions.
Is this a credit decisioning tool?+
No. Nothing in the platform constitutes a lending recommendation, credit score, or regulatory decisioning output.
Is customer data used to train third-party models?+
No. Customer data is not used to train third-party models.
Can we white-label the platform?+
Yes — portal name, logo, brand colors, email branding, and PDF branding are configurable per organization.
Where is our data hosted?+
Managed cloud hosting with ISO 27001–certified providers. Region details are stated in the DPA.
How is benchmarking anonymized?+
Cross-organization benchmarks aggregate under small-n suppression (n < 15 suppressed; 15–29 directional only).
Do we own our data?+
Yes. Organizations own their business data. The platform acts as data processor on the organization's behalf.
Do you provide an API?+
Yes, on the Enterprise tier. Per-organization API keys with scoped permissions and webhooks.