Privacy & Security

Your financial data deserves fortress-level protection.

Learn how FinKitty protects your sensitive financial information with industry-leading security measures.

🛡️ Bank-Grade Security

We use the same security standards as your bank, because your financial data deserves nothing less.

🔐

256-Bit Encryption

All data is encrypted with AES-256 encryption, the same standard used by banks and governments worldwide.

🏛️

FCA Regulated

We operate under strict Financial Conduct Authority regulations and undergo regular security audits.

👁️

Read-Only Access

We can only view your transaction data. We cannot move money or change any account details.

🔒 How We Protect Your Data

🚪

Secure Connection

All connections to your bank use OAuth 2.0 and TLS 1.3 encryption. We never see or store your banking passwords. Your bank creates a secure, temporary access token that we use to fetch your data.

  • • OAuth 2.0 authentication
  • • TLS 1.3 encryption in transit
  • • No password storage ever
🏰

Data Storage

Your data is stored in encrypted databases with multiple layers of protection. Each user's data is completely isolated and encrypted with unique keys.

  • • AES-256 encryption at rest
  • • Isolated user databases
  • • Regular automated backups
👥

Access Control

Strict access controls ensure only you can see your data. Our engineers cannot access your financial information without explicit permission and comprehensive audit trails.

  • • Multi-factor authentication required
  • • Role-based access controls
  • • Complete audit logging

🏦 Open Banking Security

Open Banking is actually more secure than traditional methods. Here's why.

❌ Old Way (Screen Scraping)

  • • Required sharing your login password
  • • Used screen scraping to grab data
  • • No regulatory oversight
  • • Connection could break anytime
  • • Bank couldn't tell legitimate vs fraudulent access

✅ Open Banking (Secure APIs)

  • • No passwords shared, ever
  • • Direct, regulated API connections
  • • FCA regulated and monitored
  • • Reliable, standardized connections
  • • Bank knows exactly who's accessing what

📋 Privacy Policy Highlights

We believe in transparency. Here's what you need to know about your data.

🚫

We Don't Sell Data

Your financial data is never sold, shared, or used for advertising. Ever.

🇬🇧

UK Data Only

All data is stored in UK data centers and never leaves the country.

Retention Limits

We only keep data as long as needed and delete it when you cancel.

📤

Easy Export

Export all your data anytime in standard formats. It's your data.

🏅 Compliance & Certifications

GDPR Compliant

Full compliance with EU General Data Protection Regulation standards.

ISO 27001

Information security management system certified to international standards.

SOC 2 Type II

Independently audited for security, availability, and confidentiality.

Security Questions?

Our security team is here to answer any questions about how we protect your data.

📧 Contact Our Security Team

For security-related questions, vulnerability reports, or compliance inquiries.

security@finkitty.com

Learn More

🏦 Open Banking ❓ FAQ 📝 Sign Up