Security at BridgeMarket
Private transactions run on sensitive information — offering memoranda, financials, identity documents. Protecting them is the product, not a feature of it.
Encryption
TLS 1.3 in transit, AES-256 at rest. Documents are encrypted before they touch storage.
Access controls
Role-based permissions, anonymous investor tags, and revocable, per-listing access grants.
Infrastructure
Hosted on SOC 2 Type II audited cloud infrastructure with point-in-time recovery.
Privacy by design
Listings are never indexed, never syndicated, and never visible without seller approval.
Compliance
Complete audit trails for every view, download, NDA, and permission change.
Team security
Background-checked staff, least-privilege access, and mandatory security training.
Responsible disclosure
Found a vulnerability? Email security@bridgemarket.com with reproduction steps. We acknowledge receipt within 24 hours, keep you informed through remediation, and credit researchers who report in good faith.