OpenMarket is currently in early access. As the platform grows, controls will be expanded and independently audited.
GPs Cannot See Your Activity
GPs on OpenMarket are passive participants. They cannot search for allocators, see who viewed their profile, identify who participated in a discussion about them, or reach out to you through the platform.
What you search for, which profiles you view, which discussions you participate in, and who you interact with are never tied to your identity outside the allocator community. GPs and intermediaries cannot see individual allocator activity. Any analytics GPs or intermediaries receive reflect broad community patterns, never individual behavior, and are only shown when enough allocators have contributed to prevent anyone from being identified.
This isn't a privacy setting you have to turn on. It's how the platform is built. Allocator data and GP data are physically separated at the infrastructure level, with separate databases, separate services, and separate credentials. There is no configuration that can expose your activity to the other side.
What We Collect and Why
We collect what's necessary to run the platform and nothing more. Individual allocator data is never sold, shared, or made available outside the allocator community. AI is used to structure community knowledge and power search. It does not expose individual allocator identity or behavior. We don't run third-party tracking scripts. We don't monetize individual allocator behavior.
Authentication and Access
Access to OpenMarket is limited to verified institutional allocators. Authentication is handled by an enterprise identity provider with two-factor authentication available for all accounts. Sessions expire automatically, and you can sign out of all devices at any time if a device is lost or compromised.
How We Protect the Platform
For allocators who want the technical details, or for compliance teams evaluating the platform:
- All data encrypted at rest and in transit
- Isolated database clusters for allocator and GP data with no cross-access
- AWS infrastructure in a private VPC with edge protection
- Service-to-service authentication with request signing and replay protection
- Comprehensive audit logging for all administrative actions
- Automated vulnerability scanning for dependencies and container images
- Full infrastructure audit trail
Compliance
OpenMarket's architecture is designed with institutional-grade compliance in mind. The platform's data isolation, audit logging, and privacy boundaries are built to support GDPR, CCPA, and SOC 2 requirements as those compliance programs are formally implemented.