Data is backed up across our data stores each day, and all backups are encrypted. We also employ strict data retention policies. We erase data from our system when a connection is deactivated.
Finch is SOC 2 and CCPA compliant. We seek to protect personal data from unauthorized access, use and disclosure with physical, technical, organizational and administrative security measures based on the type of data and how it is being processed.
SOC 2 is an independent audit report which details information and assurance about Finch’s controls.
Read more about Finch Security in our Trust Center.