Built for the most sensitive deals.
Capital, cap tables and diligence demand more than a shared drive. CIP is engineered for confidentiality, control, and a complete record of who saw what.
Confidentiality, control and a clean record.
Encryption everywhere
TLS 1.2+ in transit and AES-256 at rest. Your documents are encrypted end to end.
Granular access control
Permission every section and document down to the person, with per-organization isolation. View, download, or manage.
Complete audit trail
Every view, download and edit is logged, time-stamped and exportable.
US-based infrastructure
Hosted in the United States on Supabase and Vercel. Supporting services process in their own regions.
SSO and least privilege
SAML single sign-on with role-based access that starts closed by default.
Privacy by design
PIPEDA and GDPR aligned: encryption, defined retention, and your right to access or delete your data. Never sold, never used to train shared models.
Your data, isolated and accountable.
Every organization's data is isolated at the database level, and queries are always scoped to your organization. There is no global access mode. API keys for third-party services are encrypted at rest and masked after saving.
Authentication uses short-lived access tokens with refresh tokens stored in encrypted httpOnly cookies, never accessible to client-side JavaScript. All API calls are proxied server-side to inject authorization headers, and login endpoints are rate-limited to prevent brute-force attacks.