DATA PROTECTION
Protecting your personal data
PCI compliance
We pride ourselves on being PCI DSS (Payment Card Industry Data Security Standard) which is a crucial information security benchmark for entities engaged with credit cards issued by major card networks.
System security & logging
Our sophisticated security systems perform regular penetration tests to ensure our platform is protected against cyber threats.
Data encryption
All data is encrypted in transit, and stored encrypted at rest within Australia in our secure AWS environment which meets the highest industry security standard, ISO/IEC 27001.
ACCOUNT PROTECTION
Verifying your identity
Ensuring the security of your identity and sensitive information is our foremost responsibility, and we accomplish this through a multitude of safeguards. This includes
KYC and KYB checks
We verify your personal and business identity through biometric identity verification (KYC) and business legitimacy confirmation (KYB).
2FA authentication
Every time you log in, you will need to enter a one-time code either by SMS or MFAin order to access your account.
Session time-out
Organisational policy enforces automatic sign outs after a period of activity to ensure your account is protected
Keeping your payments secure
We have implemented a comprehensive set of measures to provide the utmost protection and security for your sensitive card, payment, and banking information.
Tokenised Data
To protect the security of your card information we use tokenised data. We do not collect or store the numbers for any cards.
To protect the security of your card information we use tokenised data. We do not collect or store the numbers for any cards.
Settlement accounts
Authorised payments are held in settlement accounts provided by two of Australia’s Big 4 banks with comprehensive security protocols in place.
Authorised payments are held in settlement accounts provided by two of Australia’s Big 4 banks with comprehensive security protocols in place.
Fraud monitoring
We use extensive fraud monitoring systems and processes to detect fraudulent activity.
We use extensive fraud monitoring systems and processes to detect fraudulent activity.
Payment method verification
To ensure secure and seamless transactions, we've incorporated Basiq's advanced technology, for bank account verification and 3DS technology for card verification
To ensure secure and seamless transactions, we've incorporated Basiq's advanced technology, for bank account verification and 3DS technology for card verification
Third party verification of Security and Compliance
We use Vanta as an automated security and compliance platform. Vanta helps our business achieve and maintain compliance by continuously monitoring our people, systems, and tools to enhance our security posture. To see more, visit our Trust Centre