Data Security

This document outlines the technical and administrative security measures that Groundbreaker takes to safeguard your data.


  • Data is encrypted at rest and in transit with bank-grade level security and encryption.
  • Data, documents, and other media are encrypted at rest using 256-bit AES encryption.
  • Identity Access Management (IAM) tools control access.
  • Data is hosted in SOC 1- (also known as SSAE 16), SOC 2-, and SOC 3-compliant data centers operated by Amazon Web Services’ (AWS) storage and computing infrastructure.
  • AWS’s data centers have extensive physical and network security measures.
  • Strict password policies are enforced.
  • Role-based permissions limit access to sensitive data and functions.
  • The system is actively monitored to detect issues and outages.
  • Two-factor authentication (text message code to verify identity at login) is available.
  • Personally Identifiable Information (like SSN) is masked when displayed on the investor portal.
  • New versions of Groundbreaker, including security patches and enhancements, are released frequently.
  • Employees of Groundbreaker are rigorously screened and vetted.

Your relationship with Groundbreaker is governed by a master contract which includes our terms of use and privacy policy. Please browse through our FAQ page to find answers to questions you may have.