Bank-grade security
Your financial data deserves the strongest protection. Here's how we ensure trust through transparency.
Two-Factor Authentication
Every account supports TOTP-based two-factor authentication. Recovery codes are generated during setup. Session management lets you review and revoke active sessions at any time.
End-to-End Encryption
All data is encrypted at rest using AES-256 and in transit using TLS 1.3. Database access is controlled through row-level security (RLS) policies ensuring data isolation between users.
Complete Audit Trail
Every action in the system is recorded with a timestamp, actor, and description. Admins can review the complete audit trail with filters for actor, action type, and date range.
Sensitive Data Masking
Financial values are masked by default. Revealing sensitive information requires re-authentication or 2FA confirmation, preventing shoulder surfing and unauthorized screen captures.
SOC 2 Infrastructure
Hosted on SOC 2 compliant infrastructure. Automated backups every 6 hours. 99.9% uptime SLA for enterprise plans. Geographically distributed for low latency.
Incident Response
Documented incident response procedures. Security team on-call 24/7. Users are notified within 72 hours of any breach affecting their data, as required by GDPR.
Compliance & Certifications
We follow industry best practices and comply with European data protection regulations.