An itemized account of the controls, attestations, and practices that let your security and compliance teams approve ReversePilot in a single review cycle.
ReversePilot maintains documented controls, third-party assessments, and security documentation packages your risk and security teams can review directly.
Every byte of borrower PII is encrypted with keys ReversePilot operates — with optional customer-managed keys for enterprise deployments.
SAML 2.0 SSO, OIDC, SCIM provisioning, and granular role-based access — integrated with the IdP your security team already manages.
SAML 2.0 and OIDC against Okta, Microsoft Entra, Google Workspace, and Ping. Just-in-time provisioning supported.
SCIM 2.0 for automated user lifecycle: provisioning, deprovisioning, group sync, and role assignment from your IdP.
Role library covering originator, processor, underwriter, closer, compliance, and executive personas. Custom roles with granular permissions.
Enforced MFA for all human users, with TOTP, WebAuthn, and IdP-passthrough options.
Configurable session lifetime, IP allow-listing, and device trust against your IdP signals.
OAuth2 client credentials for programmatic access, scoped tightly, rotatable, and fully audit-logged.
Every action a user or system takes — field updates, document classifications, calculation runs, integration calls — is captured, stamped, and stored in an append-only log with point-in-time loan reconstruction.
{
"event_id": "evt_01HXC9RZ...",
"timestamp": "2026-04-22T14:02:11.842Z",
"actor": { "id": "u_104", "email": "j.albrecht@..." },
"loan_id": "RP-204881",
"action": "field.update",
"field": "max_claim_amount",
"from": 608400,
"to": 625500,
"override": {
"reason_code": "appraisal_revision",
"role": "underwriter"
},
"hash_prev": "a8c1...e92"
}
ReversePilot's controls are designed against the specific regulations governing reverse mortgage origination, fulfillment, and post-closing — not retrofitted from forward-mortgage assumptions.
Workflow follows HUD HECM origination requirements, including counseling timing, financial assessment, LESA, and FHA insurance application.
License-aware originator assignment by state with effective-dating and a designated-state matrix for compliance reviewers.
LAR generation with edit checks, data point validation, and submission-ready packaging for the annual filing cycle.
Disclosure timing rules with automatic recalculation and re-disclosure on triggering events.
State-specific seniors-protection requirements, including required disclosures and counseling validation flows.
HMDA-aligned demographic capture and exception reporting suitable for fair-lending program oversight.
High availability, regional failover, and continuity exercises designed for an operation where downtime translates directly into delayed closings.
Production uptime SLA, measured monthly with public status page.
Recovery time objective for the production application tier.
Recovery point objective for transactional data via continuous replication.
Full failover exercise documented in the annual resilience review package.
ReversePilot processes sensitive PII for older Americans — the highest-stakes consumer data in the lending stack. Privacy is treated as a first-class engineering and operational concern, not a checkbox.
We disclose every third party that processes customer data, what they do, and where they operate. Customers are notified before any addition.
Subscribe to subprocessor changes via the Trust Center notification list.
Enterprise prospects can request our current security package, CAIQ-Lite response, and pen test summary under NDA. Existing customers receive updated materials as part of annual reviews.