Security & Compliance
Transparency and Security form the foundation of everything we do at FinBox.Since Day One, our priority has been to protect all client, partner, and internal data and assets, while remaining compliant with cutting-edge standards and regulations.Through the years, we have ensured the highest standards of compliance and worked to continually monitor, test, and optimise our security standards and procedures.Our security strategy covers data security, Risk Management, infrastructure security, business continuity, disaster recovery, vendor management, identity and access control.
Certification
ISO 27001:2013
International standard that specifies the requirements for establishing, implementing, maintaining, and continually improving an information security management system within the context of the organisation's overall business risks.
ISO 27001:2013
International standard that specifies the requirements for establishing, implementing, maintaining, and continually improving an information security management system within the context of the organisation's overall business risks.
ISO 27001:2013
International standard that specifies the requirements for establishing, implementing, maintaining, and continually improving an information security management system within the context of the organisation's overall business risks.
SOC 2 Type II
Attests to the sustained operational reliability of the controls relevant to the Trust Service Criterion (TSC) — security, availability, and confidentiality of the information processed by FinBox systems.
SOC 2 Type II
Attests to the sustained operational reliability of the controls relevant to the Trust Service Criterion (TSC) — security, availability, and confidentiality of the information processed by FinBox systems.
SOC 2 Type II
Attests to the sustained operational reliability of the controls relevant to the Trust Service Criterion (TSC) — security, availability, and confidentiality of the information processed by FinBox systems.
Documentation
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Safe-To-Host Certificate (VAPT) by Cert-IN empanelled:
Signifies a verified and secure hosting environment, supported by stringent cybersecurity measures.
Frequently asked questions
Does FinBox have an information security policy and procedure?
How often does FinBox perform VAPT?
What are the encryption mechanisms used by FinBox?
Does FinBox have a Change Management/SDLC Policy?
Does FinBox have a patch management policy?
Does FinBox have an incident management policy and procedure?
Does FinBox have a physical security policy and procedure?
Does FinBox have third-party vendor risk management procedures?
Does FinBox have an Enterprise/Operational Risk Management Policy?
Does FinBox conduct background checks of its employees?
Does FinBox have an information security policy and procedure?
How often does FinBox perform VAPT?
What are the encryption mechanisms used by FinBox?
Does FinBox have a Change Management/SDLC Policy?
Does FinBox have a patch management policy?
Does FinBox have an incident management policy and procedure?
Does FinBox have a physical security policy and procedure?
Does FinBox have third-party vendor risk management procedures?
Does FinBox have an Enterprise/Operational Risk Management Policy?
Does FinBox conduct background checks of its employees?
Does FinBox have an information security policy and procedure?
How often does FinBox perform VAPT?
What are the encryption mechanisms used by FinBox?
Does FinBox have a Change Management/SDLC Policy?
Does FinBox have a patch management policy?
Does FinBox have an incident management policy and procedure?
Does FinBox have a physical security policy and procedure?
Does FinBox have third-party vendor risk management procedures?
Does FinBox have an Enterprise/Operational Risk Management Policy?
Does FinBox conduct background checks of its employees?
Risk Management
Identity Verification
Risk Management
Identity Verification
Risk Management
Identity Verification