Rate Checker

TransferMate Trust Centre

TransferMate Trust Centre

Keeping your data safe & secure.

Keeping your data safe and secure is at the heart of our service offering. TransferMate has a robust anti-money-laundering program so you can feel confident in the security of your financial transactions.

SECURITY OVERVIEW

SECURITY OVERVIEW

TransferMate undergoes annual SOC I, SOC II and ISO27001 reviews to ensure we handle customer data securely and in compliance with all applicable regulations.

These include, but are not limited to: GDPR, HIPAA, GLBA and other data protection laws. We regularly review and update security policies, provide security training to staff, perform security testing, monitor compliance with security policies and conduct internal and external risk assessments.

Security Platform

Secure Platform

Architecture

Our architecture is multi-tenant by design, data filters are applied ensuring that access to data is restricted based on job role and associated access privileges.

Encryption

Data in transit is encrypted using SSL certificates (TLS 1.2) meaning that unauthorized individuals will not be able to decipher your confidential financial information.

Hosting provider

TransferMate use data host provider Interxion, all data centre facilities are ISO27001, ISO22301 certified and maintain a SOC 2 report.

Information Security

Patch Management

A risk-based approach is taken with all critical patches installed within 7 days or less in line with our patch management standard.

External Audits

A dedicated audit program is in place with several internal audits completed on a monthly basis and bi-annual external audits completed to ensure conformance of our Information Security Management System with ISO27001.

Penetration Testing

Penetration testing is conducted at least annually by a third party provider. Vulnerabilities are assigned owners and tracked to remediation at our IT governance forums.

Security Incident and Event Notification

24 x 7 system monitoring is undertaken by our Security Operations Centre provider. TransferMate has a documented and established incident management procedure with incident severity and points of escalation defined.

Vendor Management

TransferMate has defined rules for engagement with third parties. Requirements include contracts and due diligence to ensure that services commissioned are from reputable companies that operate in accordance with all applicable industry, regulatory and legislative requirements.

Data Protection

Data Deletion

We only retain data for as long as is required under regulatory and legislative requirements. Data retention timelines are defined and procedures are in place to comply with erasure requests from our clients.

Security of Data Processing Activities

TransferMate are headquartered and registered in Ireland and subject to the General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679). Technical and organisational controls are implemented and maintained as per industry best practice, these controls are externally audited on a bi-annual basis by our ISO27001 auditor.

Awareness Training

TransferMate takes the privacy of our clients seriously and complies with all local data protection laws in the jurisdictions we operate in. Staff are reminded of their data protection obligations through regular awareness communications from the Data Protection Officer. Computer based training and testing of understanding is mandatory and completed by all staff on an annual basis.

DON’T JUST TAKE OUR WORD FOR IT

Next up

Regulations

Learn more
Ready to get started?

Notification

Use bulk payments to make up to 10,000 payments to employees or partners with a single click

Become a Partner








Become a Technology Partner








We use cookies to give you the best online experience. By agreeing you accept the use of cookies in accordance with our cookie policy.

Privacy Settings saved!
Privacy Settings

When you visit any web site, it may store or retrieve information on your browser, mostly in the form of cookies. Control your personal Cookie Services here.



In order to use this website we use the following technically required cookies
  • redux_blast
  • wordpress_gdpr_allowed_services
  • wordpress_gdpr_cookies_allowed
  • wordpress_gdpr_cookies_declined
  • wordpress_test_cookie
  • wordpress_logged_in_
  • wp-settings-1
  • wp-settings-time-1
  • wordpress_sec

Decline all Services
Accept all Services