Pre-built IPS configurations demonstrating different governance patterns and plan complexities
Each scenario pre-fills every field across all 8 IPS sections β governance structure, investment philosophy, menu design, selection criteria, monitoring framework, fee policy, and participant services. Select a scenario to explore, then customize any field before generating your IPS document.
π
Security & Trust Center
Enterprise-grade protection for your retirement plan data
β
All Systems Secure
Your data is protected with enterprise-grade security and never used for AI training.
π API-First Architecture β Not a Chatbot
IPS(k) connects to Anthropic's enterprise API, not consumer chatbots. When you use "Enhance with Claude AI," your plan metadata is sent via the enterprise API tier β never used for training, never stored in shared conversation logs, and never reviewed by humans. All form data stays in your browser until you explicitly generate a document.
How Your Data is Protected
π
Form Data
β
π₯οΈ
Browser
β
π
TLS 1.3
β
π€
Claude API
β
π
IPS Doc
β
ποΈ
Auto-Delete
Core Security Features
π«
Zero Training Guarantee
Anthropic's enterprise API never uses your inputs or outputs to train models. Contractually guaranteed.
π
End-to-End Encryption
AES-256 at rest, TLS 1.3 in transit. Data encrypted at every stage between your browser and AI provider.
β±οΈ
Zero Data Retention
Anthropic offers Zero Data Retention (ZDR). AI queries are processed and immediately discarded β nothing stored.
ποΈβπ¨οΈ
No Human Review
Unlike consumer chatbots, enterprise API data is never reviewed by humans at Anthropic.
Compliance Certifications
π
SOC 2Type II Certified
π
ISO 27001Information Security
π₯
HIPAABAA Available
πͺπΊ
GDPRCompliant
πΊπΈ
CCPACompliant
π‘ Tip: See the Compliance tab for detailed regulatory alignment information.
IPS(k) uses Anthropic's enterprise Claude API exclusively for the "Enhance with Claude AI" feature. Your plan data is never used for training and has strict retention limits.
Consumer Chatbot vs. Enterprise API
Security Aspect
Consumer Chatbots
Enterprise API (What We Use)
Training on your data
β May train on conversations
β NEVER trains on your data
Data retention
β Stored indefinitely
β Zero Data Retention available
Human review
β May review for quality
β No human review of content
Privacy policies
β Consumer privacy terms
β Enterprise DPA / BAA available
Compliance
β Limited certifications
β SOC 2, ISO 27001, HIPAA-ready
Our AI Provider
Claude
Anthropic Claude
Claude Sonnet 4 API
SOC 2 Type IIISO 27001HIPAA
Zero Data Retention (ZDR) option
No training on API data β ever
30-day max retention (without ZDR)
Enterprise DPA available
Used only for optional "Enhance with Claude AI" β local template engine requires no AI
π‘ Note: IPS(k)'s built-in "Generate IPS Document" button uses a local template engine that requires no AI at all β your data never leaves the browser. The "Enhance with Claude AI" button is optional and the only feature that calls the Anthropic API.
π How Your Data Flows
Understanding exactly what data is sent where gives you confidence in our security architecture.
IPS(k) Secure Processing Pipeline
π
Your Inputs
Plan metadata
β
π₯οΈ
Browser
Form fields
πβ
π€
Claude API
AI enhancement
πβ
π
IPS Document
Generated text
β
πΎ
Export
HTML / PDF / Word
π¦ What Data Is Sent
β
Plan Metadata Only
Only plan governance choices (plan type, committee structure, fee policy, etc.) are sent to Claude. No participant data, no SSNs, no account balances.
π
Encrypted in Transit
All data uses TLS 1.3 encryption between your browser and Anthropic's API endpoint.
π₯οΈ
Browser-Only Processing
All form data, the IPS preview, and export generation (HTML, PDF, Word) happen entirely in your browser. No server stores your inputs.
ποΈ
Nothing Stored
IPS(k) has no backend database. When you close the tab, your data is gone. Exports are generated client-side and saved to your device.
β οΈ Important: No files are uploaded. IPS(k) collects plan governance decisions via form fields β no documents, no participant data, no PII. The "Enhance with Claude AI" feature sends only plan metadata (company name, plan type, policy choices).
βοΈ Regulatory Compliance
βοΈ
ERISA
Designed for fiduciary compliance. The IPS documents the prudent process for investment selection, monitoring, and fee oversight required by ERISA Sections 402 and 404.
ποΈ
DOL Fiduciary Rule
Transparent methodology supports documented, objective investment monitoring processes aligned with DOL's emphasis on procedural prudence.
π
DOL Cybersecurity
Aligned with DOL's cybersecurity guidance for plan fiduciaries. Encryption, access controls, and no unnecessary data retention.
πͺπΊ
GDPR
Data minimization by design. No PII collected. No unnecessary retention. Clear data processing purposes. DPA available from Anthropic.
β Security Controls Implemented
π IPS(k) Security Checklist
β No PII collected or stored
β Encrypted transmission (TLS 1.3)
β No AI training on plan data
β SOC 2 Type II certified providers
β No backend database or server storage
β Client-side export generation
π Documentation: For fiduciary due diligence, SOC 2 reports are available under NDA from Anthropic's trust center.
β Frequently Asked Questions
No. IPS(k) uses Anthropic's enterprise API tier. API data is NOT used to train models. Contractually guaranteed. Additionally, the built-in template engine generates IPS documents without any AI β the Claude enhancement is entirely optional.
IPS(k) has no server-side storage. All form data lives in your browser's memory and is gone when you close the tab. If you use "Enhance with Claude AI," Anthropic offers Zero Data Retention β processed and immediately discarded.
No. Enterprise API data is NOT subject to human review. Only automated systems process the data briefly before deletion.
None. IPS(k) only collects plan-level governance decisions: plan type, committee structure, investment philosophy, fee policy, etc. No participant SSNs, names, balances, or any PII is ever collected, processed, or stored.
A structured prompt containing your plan governance choices β company name, plan type, committee frequency, investment philosophy, fee policy selections, etc. This is plan metadata, not participant data. Claude generates the IPS prose and returns it. The prompt and response are then discarded under Anthropic's retention policy.
Yes. The "Generate IPS Document" button uses a built-in template engine that runs entirely in your browser. No data leaves your device. The "Enhance with Claude AI" button is a separate, optional feature.
Anthropic: SOC 2 Type II, ISO 27001, HIPAA BAA available. Cloudflare (infrastructure): SOC 2 Type II, ISO 27001, PCI DSS Level 1, FedRAMP.