Trust & Architecture
Architectural isolation for every family fund. Not policy promises — infrastructure guarantees.
Every family fund client receives a fully isolated workspace. Tenant-scoped database access enforced via row-level security. Engagement-scoped intelligence layer access. Separate audit trail. Family fund data never crosses tenant boundaries. This is not multi-tenancy with permissions — it is enforced at the database and application layers via row-level security and engagement-scoped access control.
Each family fund holds its own encryption keys. Even Condifi cannot access raw data without explicit customer authorization. This is the standard family fund counsel expects from institutional-grade platforms — and the standard we deliver.
Before any data leaves your family fund's workspace, the tokenization gateway scans for sensitive identifiers — names, addresses, account numbers, custodian names, deal codenames, family member identities. Each identifier is replaced with a reversible token. The intelligence layer never sees raw identifiers. When the intelligence layer responds, the gateway restores tokens to real values before the operator sees the answer. Token mappings are scoped to your tenant via row-level security — they never cross tenant boundaries.
When a family fund leaves Condifi, every trace of that fund's data is purged. Hard delete, not soft delete. Encryption keys rotated and destroyed. Audit log retained only for legally required hold period, then irrecoverably eliminated. Cryptographic attestation of deletion provided. This is not a platform promise. It is structural.
Family funds choose where their data lives. United States, European Union, or Switzerland data residency options. Multi-jurisdictional family funds receive jurisdiction-tagged workspaces with row-level residency enforcement.
Your family fund's data is never used to train AI models. Period. We maintain explicit zero-training agreements with every AI provider we integrate with. Your data informs your platform — and no other platform, including ours.