Security & Trust

Security in plain language.

How FuturePath protects your data — the controls we've built and the boundaries we hold.

Data access

  • Users access only their own data.
  • Household data is shared only with accepted members.
  • Removed members lose access.

Database security

  • Authenticated sign-in required for user data.
  • Row-level security enforced on user and household tables.
  • Server-side validation on every mutating action.
  • Planner threads are scoped to the owner or the household.

AI and privacy

  • The planner uses relevant profile and planning context.
  • Raw internal database records are not exposed to the model.
  • Planner actions are validated before execution.

Location privacy

  • No raw IP addresses stored.
  • City detection is optional.
  • Manually selected location always wins.

Historical integrity

  • Completed scenarios use immutable profile snapshots.
  • Later profile updates do not rewrite prior reports.

Operational security

  • Health monitoring.
  • Audit records for privileged actions.
  • Error monitoring.
  • Rate limiting on public endpoints.

FuturePath is in Open Beta. We describe controls we actually operate today. We do not claim SOC 2, ISO 27001, HIPAA, PCI, or bank-grade encryption certifications, and we will publish evidence before making any such claim.

Report a security concern

Found something that doesn't look right? Please tell us.

Contact Support