Your customer data is safe with us.

Customer trust comes first. We take the responsibility of helping you manage your customer data seriously.

Security at every level of our
organization and product

Compliant with the highest standards.

Forethought is independently audited and certified to meet compliance standards for security, availability, and confidentiality. We are compliant with ISO 27001 and certified for SOC 2.

Data encryption and processing.

Your data is encrypted at rest and protected by TLS in transit. We manage our production secrets with AWS tools. And our Data Processing Agreement (DPA) reflects the requirements of the GDPR and CCPA.

Rigorous product design.

We prioritize compliance with all relevant data protection laws. And our projects undergo security-design reviews, threat models, and regular pen tests with trusted security vendors.

Trained at all levels.

Every one of our employees is trained in the latest privacy and security measures. Our engineers receive additional specialized security training.

Integrated oversight.

We’ve appointed a dedicated Data Protection Officer to oversee our ongoing compliance efforts and other security-related measures.

ISO 27001






Questions about security at

We’d love to answer them. Feel free to email us at
[email protected].

Our vulnerability disclosure and reward program.

Forethought maintains a private, invite-only bug bounty program, with the assistance of HackerOne. Invited researchers are eligible for a payment. While those who were not invited to the program may still submit a security bug or vulnerability to Forethought via HackerOne, such reports may not be eligible for a payment. To learn more about obtaining an invitation to the private bug bounty program, please see HackerOne’s website on invitations.

By submitting a security bug or vulnerability to Forethought via HackerOne, you acknowledge that you have read and agreed to the Program Terms and Conditions set at in the program. By providing a submission, you agree that you may not publicly disclose your findings or the contents of your submission to any third parties without Forethought’s prior written approval.

Think forward with Forethought.

We’re here to make enterprise-level AI second nature for your business.

View demo
Call to action decor Call to action decor