Compliance & Assurance (United States)
UnBound X maintains a robust security and privacy program aligned with U.S. regulatory and industry standards. Our controls are designed to meet the expectations of financial technology platforms operating in the United States.
- We adhere to SOC 2 Type II standards, covering the Trust Services Criteria of:
- Security
- Availability
- Confidentiality
- Processing Integrity
- Privacy
- Independent assessments validate the design and operating effectiveness of our security and privacy controls.
Achieving SOC 2 Type II assurance demonstrates UnBound X’s commitment to protecting customer data and operating a reliable, well-governed platform.
Infrastructure Security
UnBound X’s infrastructure is built on AWS Cloud, which is designed with a secure-by-default architecture and holds multiple globally recognized certifications, including:
- ISO 27001
- SOC 1 & SOC 2
- PCI DSS
We leverage GCP’s security capabilities to ensure resilience, scalability, and protection across our applications and data.
Our infrastructure design includes:
- A multi-layered network security model for continuous availability and protection
- Strict access controls, with access reviewed regularly to ensure only authorized personnel can interact with systems and data
- Daily encrypted backups, stored securely and tested regularly to ensure integrity and recoverability
UnBound X follows a Zero Trust security model, meaning every access request—whether internal or external—is verified before being granted.
All infrastructure access requires strong authentication, including multi-factor authentication (MFA).
Data Handling & Encryption
Protecting confidential and sensitive data is a core priority at UnBound X. We implement multiple safeguards to ensure data security throughout its lifecycle:
- Data is encrypted at rest and in transit using industry-standard protocols
- AES-256 for data storage
- TLS for data in transit
- Data is classified based on sensitivity, with higher-risk data subject to enhanced protections
- Role-based access controls ensure that only authorized personnel can access sensitive information
- Team members receive ongoing training on secure data handling and security best practices
Vulnerability Disclosure
UnBound X actively collaborates with the security research community to identify and address potential vulnerabilities.
If you believe you have discovered a security issue, please report it to: security@unboundxinc.com
Valid submissions are reviewed promptly and handled responsibly in line with our vulnerability disclosure policy.
Shared Responsibility
Security is a shared responsibility. We encourage users to take proactive steps to protect their accounts, including using strong passwords and enabling additional security features where available.
To explore UnboundX Inc’s Security Trust Center and learn more about our security initiatives, click here
