Generous1000™ Control Tower
Generous1000™ Control Tower security summary
Generous1000™ Control Tower is an operational intelligence platform built for modern nonprofits. This summary outlines our security practices and compliance with nonprofit fundraising standards, including the Fundraising.AI Framework and Association of Fundraising Professionals (AFP) guidelines.
Data security and protection
- End-to-end encryption: Donor and organizational data is encrypted in transit (TLS 1.2+) and at rest using AES-256 encryption via Supabase PostgreSQL.
- Role-based access control (RLS): Supabase Row Level Security policies enforce database-level restrictions. Users can only access data belonging to their organization, and admin-only functions are protected by service role keys.
- Audit logging: All data access, modifications, and API calls are logged in the activity_logs table with user, timestamp, resource, and action recorded. Logs are retained for 90 days minimum.
- Secure backups: Daily automated backups via Supabase with point-in-time recovery available for 7 days.
- No secrets in client code: All API keys, integration tokens, and sensitive credentials are stored as Supabase Edge Function secrets, never exposed to the frontend.
Data privacy and donor control
- No third-party data sales: Donor data is never sold, shared, rented, or transferred to external organizations without explicit written consent and organization approval.
- Consent collection: Organizations maintain control over donor communications and consent records. AI features that use donor data require explicit organization approval before deployment.
- Opt-out and data deletion: Donors can request removal from communications and data deletion (GDPR-aligned). Organizations have admin tools to honor these requests.
- Public privacy policy: Organizations using Generous1000™ Control Tower maintain full transparency with their donors about what data is collected and how it is used in AI systems.
Compliance and standards
- Fundraising.AI Framework alignment: Generous1000™ Control Tower is designed in compliance with the 10 core pillars of the Fundraising.AI Framework, including privacy and security, data ethics, accountability, and transparency.
- AFP Donor Bill of Rights: We support nonprofit compliance with the Association of Fundraising Professionals' Donor Bill of Rights, including donor right to privacy, safe online transactions, and clear disclosure of data practices.
- Data residency: All data is stored in the US via Supabase with no data transfer to foreign jurisdictions without explicit consent.
- SOC 2 roadmap: Generous1000™ Control Tower is currently implementing SOC 2 Type II certification to meet enterprise security standards. We expect to complete an independent audit by Q3 2026.
AI transparency and responsibility
- Human in the loop: AI agents flag opportunities and draft recommendations. Humans make the final decisions. No autonomous actions on sensitive data.
- Explainability: Organizations can see which donor signals, data points, and logic drove each AI recommendation.
- Provider agnostic: AI calls route through a centralized managed gateway, not directly to external providers. This allows flexibility in model selection and prevents vendor lock-in.
Incident response and support
- Security incident response: In the event of a data breach, we notify affected organizations within 24 hours and provide detailed incident reports.
- Annual security review: Organizations can request an annual security audit and compliance review of Generous1000™ Control Tower's implementation.
- Dedicated support: Security and compliance questions are prioritized and answered quickly.
For questions about security or privacy, contact Kathleen Banks at kathleen@advancementdigital.com. Security and privacy questions are prioritized.