Security

Find out more about our unyielding commitment to keeping your data secure.

SOC 2 Typ 2-zertifiziert

Da wir SOC 2 Typ 2-konform sind, gewährleisten wir eine robuste Datensicherheit und geben Kunden das Vertrauen, uns zu vertrauen.

Sichere Organisation

Wir führen regelmäßige und gründliche Security & Awareness-Schulungen für alle Mitarbeiter durch.

Vollständiger Datenschutz

Unsere Anwendung erfordert immer nur Lesezugriff auf Ihre Daten.

Organization

  • All Summ employees are required to pass a thorough background check and complete annual Security and Awareness training.
  • Our team of developers are highly experienced in working with secure systems, with mechanisms in place to ensure monitoring of systems in order to respond to any issues quickly and efficiently

Best practises and risk management

  • All new product features undergo rigorous testing in a staging environment prior to release to ensure the security of your account and respective data.
  • Our team engages in regular penetration testing and vulnerability scanning to identify and rectify any potential risks to security in accordance with SOC 2 best practise.
  • Formal IT risk assessments are conducted annually (at a minimum) with organization-wide participation and C-level review of assessment outcomes.
  • All systems meet availability SLAs at all times.

Permissions

  • We will never ask for your crypto wallets private keys.
  • Our integrations only require read access to your data.
  • All API keys are securely stored and encrypted in transit and at rest.

Passwords and credentials

  • Summ enforces a password complexity standard to maximize security for users, and all credentials are stored using a salt + bcrypt hash function.

Privacy

  • Summ has layers of technical and operational controls such as antivirus, penetration testing and vulnerability scanning to protect all user information.
  • Our application allows you to delete all imported data (and associated wallet/exchange information) at any time for any reason.
  • We will never sell your data to third parties. Please see our privacy policy for details.
  • The collection, storage, processing, and disclosure of all personally identifiable information adheres to our data usage and privacy policies.

Product

  • Security Assertion Markup Language (SAML) Single Sign-On (SSO) allows authentication of users without requiring them to enter additional login credentials.
  • All payments made to Summ go through the Stripe platform, which is certified to PCI Service Provider Level 1. To read more about their security policies, you can visit Stripe's security page.

Infrastructure

  • Summ uses Amazon Web Services (AWS) centers for hosting. These are monitored at all times with controls implemented to counteract risk. You can learn more by visiting AWS's security page.

Any questions?

The security of your data is of utmost importance to us. If you have any concerns or questions, please contact us and we will get back to you.

security

Find out more about our unyielding commitment to keeping your data secure.

SOC 2 Type 2 Certified

Your financial data is protected by SOC 2 Type 2 certified security, independently verified to meet the highest standards for data privacy and protection.

Secure organization

We conduct regular and thorough Security & Awareness training for all employees.

Full data privacy

Our application only ever requires 'read-only' access to your data.

Organization

All Summ employees must pass a thorough background check and complete annual Security and Awareness training.

Our developers have extensive experience working with secure systems, with monitoring mechanisms in place to detect and respond to any issues quickly and efficiently.

Best practises and risk management

Our team engages in regular penetration testing and vulnerability scanning to identify and rectify any potential risks to security in accordance with SOC 2 best practise.

Formal IT risk assessments are conducted annually (at a minimum) with organization-wide participation and C-level review of assessment outcomes.

All systems meet availability SLAs at all times.

Permissions

We will never ask for your crypto wallet’s private keys.

Our integrations require read-only access to your data.

All API keys are securely stored and encrypted both in transit and at rest.

Passwords and credentials

Summ enforces a password complexity standard to maximize security for users, and all credentials are stored using a salt + bcrypt hash function.

Privacy

Summ uses multiple layers of technical and operational controls, including antivirus protection, penetration testing, and regular vulnerability scanning, to safeguard user information.

You can delete all imported data, including associated wallet and exchange information, at any time and for any reason.

We will never sell your data to third parties. Please refer to our Privacy Policy for more details.

The collection, storage, processing, and disclosure of personally identifiable information are handled in accordance with our data usage and privacy policies.

Product

Security Assertion Markup Language (SAML) Single Sign-On (SSO) enables users to authenticate without entering additional login credentials.

All payments to Summ are processed through Stripe, which is certified as a PCI Service Provider Level 1. For more information, please visit Stripe’s security page.

Infrastructure

Summ uses Amazon Web Services (AWS) centers for hosting. These are monitored at all times with controls implemented to counteract risk. You can learn more by visiting AWS's security page.

any questions?

The security of your data is of utmost importance to us. If you have any concerns or questions, please contact us and we will get back to you.

Contact us

All Countries

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
USA flag
Vereinigte Staaten