Technical and organizational measures to protect partner companies' information.
Multi-factor authentication and granular role-based permissions. Each user has access only to data relevant to their transactions.
All financial transactions are processed through secure gateways, with TLS 1.3 encryption and card data tokenization.
The security team monitors traffic 24/7 and applies security patches within a maximum of 4 hours from identifying a vulnerability.
Company data is stored on servers in Romania, with daily backups and AES-256 encryption both at rest and in transit.
Annual external audit according to ISO 27001 and GDPR. Logging of all access to sensitive data, retained for 24 months.
Each registered company undergoes a validation process of registration data and the legal representative before activation.