A structured, lightweight way to demonstrate responsible handling of broker submissions.
Prevent access to unprotected submissions.
MFA must be enabled.
Ensuring your systems limit access to what's needed.
MFA must be enabled.
Personnel can only access accounts and information required for their role. Sensitive fields like SSN are restricted based on business necessity.
Users must be from your domain, with exception for service-level access (developers, vendors).
If you use BPO teams (on-shore or off-shore) with access to merchant documents.
Standard policies to protect data at the human level.
Personnel must pass background checks appropriate for their role.
Documented requirements including minimum complexity and periodic changes.
Screen lock required when away from workstation. Personal cell phones may not be used at workstations where customer data is visible.
Documented process for immediately revoking system access when employees leave or change roles.
The Secure Funder™ certification program exists to establish an independent source for identifying trusted funders. Certification is based entirely on verifiable safeguards, applied consistently across all participants. Equivalent controls may be accepted when they meet the intent of the requirements and can be verified during the review. Participant's enrollment represents a voluntary commitment to elevated standards of data security and responsible business practices within the alternative finance industry.
The Secure Funder™ Directory opens April 1, 2026. Organizations enrolled prior will be recognized as Charter Members. Upon enrollment, your organization will immediately appear in the Directory with an "In Progress" status, signaling your commitment to operating responsibly. Once verification is complete, your listing will be upgraded to "Certified" status. Safeguards do not need to be in place at the time of enrollment, but must be implemented before your scheduled verification. Verification must be completed within ninety (90) days of enrollment; listings will be removed if verification is not scheduled within this period. Extensions may be granted under special circumstances.
Verification is conducted via live screen share and expected to take 15–30 minutes. Sessions are not recorded and may be paused or rescheduled at any time. All information reviewed during verification is treated as confidential. Secure Funder™ is designed for funders of all sizes and focuses narrowly on protecting submissions and the documents associated with them. Reference How Verification Works as you prepare for your session.
While no program can prevent theft entirely, the certification is designed to materially reduce exposure and deter misuse through practical, verifiable safeguards.
The annual program fee is $2,499 USD. For organizations using Aquamark tools such as watermarking (not required for certification), the annual fee is waived. No payment is due until verification is scheduled. Monthly payment arrangements are available upon request; contact info@aquamark.io for details. The fee covers verification, program administration, and ongoing Directory placement, including initiatives to expand community-level visibility and promote Directory availability through local business resource platforms. New digital badges are issued annually with updated designs.
As a participant, you agree to notify Secure Funder™ promptly of any material changes that may affect your certification status. Certification may be revoked if required safeguards are no longer maintained or if information provided during verification is found to be inaccurate.