We take the protection of your financial data seriously
We implement industry-leading security measures to protect your financial information
All passwords are hashed using bcrypt, a battle-tested cryptographic hashing algorithm. We never store your password in plain text—even our own team can't see your password.
All data transmitted between your browser and our servers is encrypted using HTTPS/TLS. This prevents anyone from intercepting your financial information while it travels over the internet.
We use Plaid, a trusted leader in financial technology used by major apps like Venmo, Robinhood, and Coinbase. We never see or store your bank login credentials. Plaid handles all bank authentication securely.
Your data is stored in a secure PostgreSQL database hosted on AWS infrastructure. Access is strictly controlled and monitored.
We never store your bank usernames or passwords. All bank authentication is handled securely through Plaid's encrypted APIs.
All new accounts require email verification to ensure account ownership and prevent unauthorized account creation.
You can delete your account at any time. We retain your data for 30 days in case you change your mind, then it's permanently and irreversibly deleted from our servers.
Plaid is a leader in financial technology, trusted by over 8,000 apps and used by millions of people. Companies like Venmo, Robinhood, Betterment, and Coinbase rely on Plaid to securely connect to bank accounts.
When you connect your bank account through Envelup, you're authenticating directly with Plaid's secure infrastructure. Your login credentials never touch our servers.
Learn more about Plaid's security at plaid.com/safety
We take security seriously. If you discover a security vulnerability, please report it to us immediately at info@envelup.com. We appreciate responsible disclosure and will work with you to address any issues promptly.
We're happy to answer any questions about how we protect your data.
mailContact Us