We believe in providing the best service for our customers, and we make sure we implement our products with security and privacy by design.
In addition to your email and password, you’ll enter a code from your mobile phone, adding an extra layer of security for your account.
Our global data risk management programme is built to GDPR standards and applies privacy best practices to help protect and respect personal data.
We review and observe employee, customer, and contractor activity to guard against suspicious or unauthorised activities.
Our website traffic runs entirely over encrypted SSL (https). This allows us to communicate using a secured connection, which protects customer data.
Scheduled daily backups are created and stored securely in different strategic geographical locations part of our business continuity management.
We hash passwords stored in the database (using bcrypt with a cost factor of 12). We check for strong passwords on account creation and password reset.
Employees must pass a criminal background check as part of the hiring process. They are required to encrypt their hard drives, utilise strong passwords, and enable screen locking.
We conduct automated vulnerability scans quarterly, and at least once a year we have extended penetration testing conducted by outside sources.