To know whether our protection is optimal and really works, we periodically let security experts critically test our platform and tell us what we can improve.
Communication with us is encrypted all the way to our servers, with encryption of at least TLS version 1.2, required by the widely known Payment Card Industry (PCI) standards. We also keep a close eye on traffic patterns to keep the bad actors out.
We keep a safe distance between where the risk is and your funds, whenever we can. We do this by putting them where it's safest. Legally, but also technically.
We know where funds go. If something doesn't look right, we get notified, fast. This helps us keep things in check, around the clock.
It definitely helps to have good security protocols and standards. But what often matters most is the people that work in the trenches every day. Our team knows the risks and is aware of common threats like social engineering.
We implement the ‘principle of least privilege’, so everyone in the team only has access to what they really need. We also carefully watch our endpoints and diligently identify possible attack vectors.