WealthVantage
Sign in

Security & Privacy

Enterprise-grade identity management and multi-tenant isolation. We prioritise your privacy by keeping our data footprint small.
Zero-Password Identity

We never store your password. WealthVantage outsources all identity management to Microsoft Entra and CIAM.

By utilizing Google and Email OTP (One-Time Passcode), your credentials never touch our servers, eliminating the risk of credential theft on our platform.

Secure Billing

Payment processing is handled exclusively by Stripe. We leverage the Stripe .NET SDK to manage subscription states without ever seeing or storing your credit card details.

We only store your subscription tier and entitlement limits—Stripe securely handles the high-risk financial data.

Minimal PII Storage

Our database is designed for privacy. We store your email address and subscription metadata—nothing more.

By minimising Personally Identifiable Information (PII), we provide a powerful wealth tracking experience without the privacy overhead of traditional financial platforms.

Tenant Isolation

Data is strictly isolated by subscriber boundaries. Our RequestContext Handshake ensures every API call is scoped to a specific EffectiveSubscriberId.

Cross-tenant data leakage is prevented at the architectural layer via strict schema enforcement and manual filtering.

Role-Based Access (RBAC)
Owner & Admin

Full management of entities and subscriber settings.

Viewer

Read-only access—ideal for shared visibility with advisors.

Global Demo

A sandboxed, write-protected environment for exploring platform features safely.

High-Trust Support (Impersonation)

For rapid incident response, WealthVantage includes a highly-regulated Impersonation Protocol. This allows authorized administrators to view the platform exactly as a user does for troubleshooting.

  • Strict Role-Based Authorization
  • Immutable Audit Logs
  • Time-limited Sessions
  • Clear "Active Impersonation" UI
Architectural Integrity

Built on .NET 10 and Next.js 16.1.1. Our architecture prioritises security over "quick-fix" hacks, ensuring a stable and secure platform.