Your data is yours. No one should access it or profit from it without your permission. We have read-only access to your financial institutions through Plaid, whose security practices are designed to meet or exceed industry standards.
Plaid uses secure cloud infrastructure technologies for quick, secure connections and the Advanced Encryption Standard (AES-256) and Transport Layer Security (TLS) to keep your personal information safe.
Security researchers and financial institutions regularly audit Plaid’s API and security controls.
Plaid requires multi-factor authentication for added security to help protect your data in our systems.
The Plaid API and all related components are continuously monitored by our information security team.
Access control is enforced on every request to stored data.
Encryption for data at rest is automated using encrypted storage volumes.Sensitive data is filtered out from logs and hence archives.
The codebase is regularly scanned for security vulnerabilities.