We work hard to earn your trust by keeping dreams, data, and dollars secure
Strict password protocols, identity verification, and automatic log outs.
All data is encrypted at rest and in transit. BrightPlan requires the latest Transport Layer Security (TLS) for authentication and encryption.
BrightPlan Investment Accounts are protected by TD Ameritrade’s Asset Protection Guarantee. Cash is FDIC insured up to $250,000 per account, and investments are SIPC insured up to $500,000.
We volunteer for annual audits to comply with the highest fiduciary standards, including SEC cybersecurity regulations.
No BrightPlan employee has access to account credentials. Login information for linked accounts is never saved or stored.
We built our platform on Salesforce so clients can benefit from all their security measures, including Salesforce's secure data centers, strict employee access controls, and disaster recovery architecture.
Salesforce maintains a comprehensive set of compliance certifications and attestations to validate their #1 value of Trust.2 This commitment has earned the trust of more than 150,000 businesses, including 97% of Fortune 100 Companies.3
BrightPlan Managed Investment Accounts are opened at TD Ameritrade in the client's name. Accounts are client owned, TD
Ameritrade safeguarded, and BrightPlan managed.
TD Ameritrade is a big deal, providing investing and trading services for 11 million client accounts totaling more than $1 trillion in assets, and serving more than 6,000 independent registered investment advisors as a trusted custodian.1 Through TD Ameritrade, cash and securities in BrightPlan Investment Accounts are each protected by $500,000 of insurance.
Our partnership with Envestnet | Yodlee provides fast, secure account verification for more than
16,000 financial sources. Linked financial account credentials are never stored or saved in BrightPlan.
Tens of millions of consumers around the world link accounts through Yodlee, including clients of 13 of the top 20 US Banks. Envestnet | Yodlee maintains bank level security and is audited like a bank. All account credentials stored are hardware encrypted using FIPS 140-2 level 2 HSM and the keys used for encryption cannot be accessed by anyone, including Yodlee employees.