MoneyEdge Security Overview
Data Centers Security
Our platform is hosted and managed within Amazon’s secure data centers, adhering to industry-leading standards such as ISO 27001, ISO 27017, ISO 27018, SOC 1/SSAE 16/ISAE 3402, SOC 2, SOC 3, PCI DSS Level 1, FISMA Moderate, Sarbanes-Oxley (SOX), and SEC Rule 17a-4(f). Physical security measures include two-factor authentication, surveillance, and restricted access.
PCI Compliance
We leverage the services of PCI-compliant payment processor Stripe to ensure secure financial transactions.
Physical Security Measures
Our data centers are ISO 27001 and FISMA certified, managed by Amazon. Stringent access controls, video surveillance, and intrusion detection systems are in place, along with environmental safeguards for fire detection, suppression, power redundancy, and climate control.
Network Security
Our network is fortified with firewalls to restrict access, DDoS mitigation techniques, and protections against spoofing, sniffing, and port scanning.
Data Security
We prioritize data security through encrypted data transmission using HTTPS, employing strong ciphers. Personally identifiable information is secured with AES-256 encryption at rest, and we enforce two-step verification for account security.
Yodlee Partnership
In collaboration with Envestnet | Yodlee, we ensure secure account aggregation while committing to not storing user credentials.
System Security
We maintain system integrity through standard images and configuration management. Authentication is performed using usernames and keys, with a strict prohibition on password authentication.
Vulnerability Management
Our proactive vulnerability management process includes deploying new systems with the latest updates and decommissioning existing systems.
Backups and Disaster Recovery
We conduct daily backups, retaining at least 30 days of backup data. Continuous snapshots of the database facilitate swift data restoration in case of unforeseen events.
Access to Customer Data
Access to customer data is limited to MoneyEdgePro staff for support purposes or as required by law.
Vulnerability Reporting
We encourage users to report vulnerabilities through support@MoneyEdgePro.com, contributing to the ongoing enhancement of our security measures.