Security - Methvin

Security

We’re committed to the security of our customers’ data and provide multiple layers of protection for the personal and financial information you trust to Methvin.

Protecting your data

You control access

As a Methvin customer you have the flexibility to invite unlimited users into your account to collaborate on your data, and the person that holds the subscription has control over who has access and what they are able to do. Our customer support staff cannot access your information unless you invite them to help. Please see our privacy policy for further information.

User authentication

We provide standard access to the Methvin software through a login and password. In addition we offer the option of using two-step authentication. This provides a second level of security for your Methvin account. It means you’re also asked to enter a unique code generated by a separate authenticator app on your smartphone. We recommend you use two-step authentication as it reduces the risk of your Methvin account being accessed if your password is compromised.

Data encryption

We encrypt all data that goes between you and Methvin using industry-standard TLS (Transport Layer Security), protecting your personal and financial data. Your data is also encrypted at rest when it is stored on our servers, and encrypted when we transfer it between data centres for backup and replication.

Network protection

Methvin takes a “defence in depth” approach to protecting our systems and your data. Multiple layers of security controls protect access to and within our environment, including firewalls, intrusion protection systems and network segregation. Methvin’s security services are configured, monitored and maintained according to industry best practice. We partner with industry-leading security vendors to leverage their expertise and global threat intelligence to protect our systems.

Secure data centres

Methvin’s servers are located within enterprise-grade hosting facilities that employ robust physical security controls to prevent physical access to the servers they house. These controls include 24/7/365 monitoring and surveillance, on-site security staff and regular ongoing security audits. Methvin maintains multiple geographically separated data replicas and hosting environments to minimise the risk of data loss or outages.

Security monitoring

Methvin’s Security team continuously monitors security systems, event logs, notifications and alerts from all systems to identify and manage threats.

 

Security assurance

Methvin has produced a Service Organization Control (SOC 2) report. The report is the result of an independent auditor's examination of Methvin's cloud based accounting system relevant to the Trust Services Principles and Criteria for Security, Availability, and Confidentiality.

If you have questions, or would like to request the latest available SOC 2 report, please complete this request form and a Methvin Customer Experience representative will contact you.

 

Leave a reply