Skip to main content

Security

FunnelStory is built to keep your customer data confidential, available only to authorized users in your organization, and protected against accidental loss or unauthorized change. This page summarizes how we approach security at a high level. For contractual terms, subprocessors, and formal questionnaires, use your agreement and your FunnelStory contact.

How we protect data

Traffic between your browser and FunnelStory is encrypted in transit using industry-standard TLS. Stored data is encrypted at rest using cloud provider key management, so secrets and customer content are not held in plaintext on disk.

Application and infrastructure

FunnelStory runs on a major cloud provider (Amazon Web Services) in a multi-tenant architecture with strict network and identity controls. We use least-privilege access for operational staff, regular dependency and vulnerability management, and periodic third-party application reviews. Infrastructure access is gated with strong authentication and logging.

Isolation between customers

Each workspace is a separate tenant: models, connections, agents, and account data belong to that workspace and are not shared with other customers. Administrative actions that affect a workspace are scoped to users who have been granted access to it.

Compliance and reviews

We maintain a security and privacy program designed for enterprise expectations (including readiness work aligned with SOC 2). Your procurement or security team can request the latest security overview, questionnaire answers, or penetration-test summaries through your FunnelStory account team.