Trust & Security

Built for high-stakes documents

PitchStation handles investor decks, board materials, and filing-derived content. Here's exactly how access, identity, data, and AI processing work — including what we don't do yet.

available today  ·  on the roadmap

🔑Access control

🪪Viewer identity & provenance

📝Version control

🔐Account security

🧾Auditing

🗄️Data & AI processing

🛡️Transport & hardening

On the roadmap

Honest status. PitchStation is an early-stage platform. The controls above are live today; the roadmap items are not. If you have a specific security or compliance requirement, ask us directly rather than assuming — we'd rather tell you "not yet" than imply otherwise.
PitchStation · Trust & Security · Home · Sign in
Operator access

Administration without access

Platform administrators cannot open your documents by role alone. Content access requires a grant that you approve: an operator files a request with a written reason, you approve (24-hour expiry) or decline on your profile page, and every open under a grant is logged and emailed to you in real time. You can revoke an active grant at any moment, and your profile shows the complete access log — if it's empty, no operator has ever looked. Deploy credentials (your VPS keys) have no operator path at all. For your most sensitive documents, sealed shares encrypt in your browser before upload — the decryption key travels only in the link fragment, which never reaches our servers: we store ciphertext we mathematically cannot read.