Banking & Brokerage Accounts

  • Finary does not store your banking credentials and cannot move your money.

  • We have read-only access that allows us to display your data in your account. That's it.

Banking & Brokerage Credentials

  • Your credentials are securely encrypted and managed by our regulated aggregator partners, Plaid (US, Canada & UK), Budget Insight (EU), and Flanks (EU).

  • Plaid is the world's leading account aggregator.

  • Budget Insight is the leader on the French market and is regulated by the French Central Bank.

  • Flanks is a Barcelona-based company that is regulated by the Bank of Spain.

  • The Finary team never has access to your credentials.

Crypto exchanges

  • Crypto exchanges like Binance or Kraken can safely be connected via API keys that you can generate on your account.

  • Finary does not have access to your password.

  • You control these keys and can revoke them in one click.

  • These API keys are read-only. We can't initiate trades or move money in your accounts.

Data Protection and Privacy

  • We will never sell your data. Sorry Mark Zuckerberg. Your privacy is of paramount importance to us.

  • We strictly enforce GDPR regulation. For more information, please read our privacy policy

Security at Finary

Finary is secure by design. We apply bank-grade security in order to protect your privacy as well as your personal data.

  • Your data is encrypted at-rest and in transit using AES-256 and SHA-256 algorithms. This means that nobody can read your data while it's being transferred between your computer and our servers.

  • Our infrastructure uses best-in-class design and is optimised for security. Finary is regularly audited by independent security experts.

  • Our servers are all located in the Netherlands, the heart of the European Union. They are protected 24/7.

  • Automatic backups allow us to quickly restore your data in case of data loss. These backups are encrypted.

  • Our servers can only be accessed via SSH key. Passwords and root access won't be enough to get access.

  • We use third-party software in order to protect us against Denial-of-Service attacks.

  • Our domains are protected with DNSSEC.

Did this answer your question?