SECURITY
Sharing data securely through an industry leading platform
- No human will ever see your login information
- We’ll delete your data on request
- We’ll never see your data
- We’re ISO 27001 certified



What data do we collect?
When you give Basiq permission to connect to your bank, we collect information required by the provider of your account or service, such as your login information, transactions, account numbers, and balances as well as general identity data including names and email addresses. This allows you to gain access to powerful financial services and tools and speeds up identity and account verification.
No human ever sees your banking data except for the company that you’ve decided to share it with. We provide a read-only service, in other words, we can report on your accounts and transactions but we can’t make any payments or transfers – so your money is secure.

We use the same data centres trusted by the most highly-regulated organisations in the world…
Our security approach focuses on security governance, risk management and compliance. This includes encryption at rest and in transit, network security and server hardening, administrative access control, system monitoring, logging and alerting, plus more.
Secure environment
Our physical infrastructure is hosted and managed in a ISO 27001, SOC 1 & SOC 2, PCI Level 1, FISMA Moderate and SOX certified data centres.
Multi-factor authentication
Two-factor authentication and strong password controls are required for administrative access to all systems.
Restricted network access
Firewalls are utilised to restrict access to systems from external networks and between systems internally.
Data encryption
We store data at rest using 256-bit AES encryption and use an SSL/TLS secure tunnel to transfer data between your app and our API.
Secure development practices
Our development follows industry-standard secure coding guidelines, such as those recommended by OWASP.
Realtime monitoring
We conduct behavioural monitoring, vulnerability assessment, SIEM and intrusion detection to detect threats and keep our system safe and secure.
Technical Documentation
Understand the Basiq platform’s technical security details through our official API documentation.
Questions about data security?
Get in touch with our team if you have more questions about how we handle data.

