We treat your financial data with the same level of security as the banks we connect with.
All data in transit is encrypted via TLS 1.3. Data at rest is secured using AES-256 encryption. We utilize industry-standard key management services.
We connect to financial institutions via regulated Open Banking APIs (PSD2). We operate as a Technical Service Provider (TSP) and never store your banking credentials.
We are fully GDPR compliant. Your data is hosted on secure servers located within the European Union. We practice strict data minimization—only requesting the data we absolutely need.
We never hold your money. Rent payments move directly from the tenant to the landlord via regulated payment processors. We do not have access to your funds.
Hosted on AWS with strict network isolation, VPC configurations, and enterprise firewall rules.
Automated daily backups with point-in-time recovery to ensure data integrity and business continuity.
Enterprise-grade mitigation against denial-of-service attacks via AWS Shield and CloudFront.
Enterprise-grade access controls and continuous security monitoring.
Our internal systems enforce the Principle of Least Privilege. Only authorized engineers have access to production environments, and all access is logged and audited.
We perform regular vulnerability scans using industry-standard tools and conduct periodic third-party security audits to identify and address potential threats.
If you believe you have found a security vulnerability in our platform, please contact us immediately. We appreciate the help of the security community in keeping our users safe.
security@enoikio.com