Security & Privacy

Your financial data is protected with bank-level security. Here's how we keep your information safe.

All Systems Secure

Last security check: 2 minutes ago

Where Your Data is Stored
Complete transparency about data storage locations

Database Location

  • • Financial data stored in TiDB Cloud (MySQL-compatible)
  • • Primary server location: Singapore (ap-southeast-1)
  • • Backup locations: Multi-region redundancy for disaster recovery
  • • Provider: Manus Platform (enterprise-grade infrastructure)

Document Storage

  • • Files stored in Amazon S3
  • • Region: Asia Pacific (Singapore)
  • • Encryption: AES-256 at rest
  • • Access: Pre-signed URLs with 60-minute expiration
  • • Backups: Automatic versioning and cross-region replication

Data Residency: Your data never leaves the Asia-Pacific region and is subject to Singapore data protection laws.

How Your Data is Protected
Multiple layers of security protecting your information

Encryption

  • In transit: TLS 1.3 (bank-level encryption) - same as online banking
  • At rest: AES-256 encryption for all stored data
  • Database: Encrypted connections only, no plain-text storage
  • Documents: Encrypted before upload, decrypted only when you access them

Access Control

  • OAuth 2.0 authentication (industry standard)
  • Session-based authorization with secure cookies
  • No third-party access - your data is never shared or sold
  • Role-based access - you control who sees what
  • Automatic logout after 24 hours of inactivity

Security Measures

  • Daily automated backups with 30-day retention
  • DDoS protection at infrastructure level
  • Intrusion detection and monitoring 24/7
  • Regular security audits and penetration testing
  • Secure development practices and code reviews

Security Score: A+ - Verified by SSL Labs and Security Headers

How to Verify Security
Tools and features to verify your data is secure

✓ Real-time Security Dashboard

View your security status, recent activity, and security score

View Dashboard

✓ Activity Log

Track every login, data change, and access to your account

View Activity

✓ SSL Certificate

Click the lock icon in your browser's address bar to verify our certificate

TLS 1.3 Enabled

✓ Export Your Data

Download all your data anytime in JSON or CSV format

Export Data

Your Rights & Controls

Data Portability: Export all your data in machine-readable format
Right to Deletion: Delete your account and all data permanently
Access Transparency: See exactly who accessed your data and when
Compliance & Standards
Industry certifications and compliance frameworks
256-bit EncryptionGDPR ReadySOC 2 Type IIISO 27001

Questions about security? Contact our security team at [email protected]

Last updated: February 2, 2026

We take your security seriously. If you discover a security vulnerability, please report it to [email protected]