Skip to content
CrossmarcSteward
Get started
Privacy & security

Your data is private. Fully, deliberately, and by design.

Steward is built for families with assets worth protecting. That means the security model is not an afterthought — it is the architecture. This page explains how your data is stored, who can access it, and what we will never do with it.

How we protect your data

Security is a layered commitment — from the infrastructure your data lives on, to the access controls that determine who can see it.

Encryption at rest and in transit

All data is encrypted in transit using TLS 1.2 or higher, and encrypted at rest on AWS infrastructure. Encryption keys are managed by AWS, separately from the data they protect.

Bank-grade cloud infrastructure

Steward runs on Amazon Web Services, which maintains SOC 2 Type II, ISO 27001, and PCI DSS compliance across the infrastructure we build on. Within Steward, every record is tagged to your workspace and that boundary is enforced on every single request — your data is never returned outside it.

Access control you define

You decide who sees what. Grant advisors, family members, or successors a scoped view of your data — and revoke access instantly. Every access event is logged, and internal access is held to least-privilege controls and audited.

Document vault isolation

Vault documents are stored in private object storage with no public URLs. Each download is time-limited and scoped to the authenticated user who requested it. Deleted files are purged, not merely hidden.

Account aggregation

Plaid connects your accounts. We only ever read.

Steward uses Plaid — the same aggregation layer trusted by thousands of financial applications — to connect your bank accounts and custodian holdings. The connection is strictly read-only: Plaid and Steward together cannot initiate transfers, move funds, or change anything at your institution.

  • Read-only access — Plaid cannot initiate transactions on your behalf
  • Your bank credentials are entered directly on your bank's Plaid-hosted page, never on Steward's servers
  • Plaid is certified to SOC 2 Type II and holds bank-level agreements with over 12,000 institutions
  • You can disconnect any institution at any time; Steward deletes the access token immediately
Our commitment

Your data stays yours.

Steward is a private tool built for private families. We have no advertising model, no data-brokering relationships, and no incentive to share what you store with us. Our business model is simple: you pay for the platform, and we protect your information.

These are not aspirations. They are the terms under which Steward operates.

  • We do not sell, rent, or share your personal or financial data with any third party for marketing or analytics.

  • We do not use your data to train AI models.

  • We do not display advertising of any kind.

  • Access logs are retained for 90 days for security audit purposes, then deleted.

  • You may request deletion of your account and all associated data at any time by contacting us.

A private institution

Ready to keep your records in a place worthy of them?

Questions about our security practices? We are happy to speak in detail.

Get started Contact us

Strictly confidential · Your data stays yours