Security policies
These policies describe the operational security controls Fluent Terrain LLC uses for GlacialBooks. They are public so customers and integration partners can review how financial data is protected.
Information Security Policy
Severity deadlines, vulnerability remediation targets, incident response timing, and annual review requirements.
Read policyAccess Controls Policy
Identity, MFA, RBAC, 90-day access reviews, least privilege, and non-human access rules for production systems.
Read policyData Retention and Deletion Policy
The authoritative retention schedule, including 30-day account deletion grace, 7-year accounting retention, backups, logs, and legal holds.
Read policyMFA Implementation
Consumer and workforce multi factor authentication requirements, including the control that gates Plaid Link.
Read policy