Didn’t find what you were looking for?
Select your institution type:
Security
Built around trust, with multiple security layers
As a SOC2 Type II certified and regulatory compliant company, Parfin takes security seriously, applying best-in-class governance and controls.
Find out more
Key aspects of our approach
We work with the concept of Defense in Depth Cyber Security, combining process and technology, following the best practices of General Data Protection Law (LGPD) and EU General Data Protection Regulation (GDPR), using multiple layers of security for maximum protection, each layer on top of the other, guaranteeing the best experience for your company.
Process Security
- SOC2 Type II Certified gold standard for security assessment in financial markets;
- Regular penetration tests;
- Policies and procedures for compliance with data security and privacy;
- 24/7 security system surveillance with specialized incident response;
- Partnership with corporate suppliers to mitigate distributed denial-of-service (DDoS) attacks;
- All software improvements require strict tests and the approval of Parfin’s executive team.
Infrastructure
- All user data is fully encrypted, passwords are hashed and salted;
- All of our website’s data is transmitted by Transport Layer Security (TLS) connections (in other words, HTTPS);
- All sensitive data is also cryptographed by HSM as an additional security layer;
- Use of HSMs that obtain Level 2 or higher FIPS 140-2 classification;
- All API Keys are stored in cryptographed HMAC virtual wallets.
Platform Security Features
- Mandatory two-factor authentication (2FA) for all user accounts when logging on and executing sensitive actions;
- Mandatory whitelisting of addresses created 24 hours after approval;
- Customizable authorization engine to guarantee that the indicator and the approver of the transaction are separated;
- Multiple user functions with different access and control levels.
Request a demo