SECURITY AND PRIVACY

Your security and privacy are our top priorities.

Verto was founded on the principle that you have a right to your financial information. You should get to decide where, how, and with whom it’s shared. That’s why we’re building our product with security and transparency in mind.


We are compliant with FINTRAC Canada’s regulations.

We operate at regulation.

We’re compliant with FINTRAC regulations and have partnered with Flinks to offer fast bank-wallet and wallet-bank transfers.

Regulated by FINTRAC

Cloud Dev Best Practices

Bank-grade security

256-bit SSL encryption

NSF Return Policy

Secure Bank Connections

Compliance Standards

FINTRAC Canada Regulated

Verto is a registered money services business regulated by FINTRAC, the Financial Transactions and Reports Analysis Centre of Canada.

 

FINTRAC is the agency of the Government of Canada responsible for facilitating the detection, prevention and deterrence of money laundering, terrorist activity financing and other threats to the security of Canada.

Data access

Direct debit/direct credit payments are used to handle Bank to Wallet, and Wallet to Bank transactions. These transactions are classified as electronic money transfers (EFTs) using the ACH (Automated Clearing House) system, a centralised architecture that connects banks. 

 

Money is transferred straight from one account to another via EFT – a fast, safe, and convenient way to conduct transactions built on Payments Canada’s infrastructure.

Regular independent audits.

Verto’s infra, API’s, and integrations and security controls get regularly audited to ensure a holistically secure system for our customers.

 

We get these independent audits done for regular additional assurance that our business process, information technology and risk management controls are properly designed.

Compliance guaranteed

System Security

Data access

All customer data is protected with the same level of sensitivity and is subject to strict controls. Customer data access is strictly controlled and allowed only when absolutely necessary and in accordance with our policies. Customer data is only accessible to authorised Verto employees.

Secure cloud infrastructure.

We use modern cloud technologies to host Verto and our APIs. By using cloud infrastructure, we’re able to leverage years of safety enhancements to better protect data. AWS is certified with ISO/IEC 27001ISO/IEC 27017ISO/IEC 27018 and SOC 1/2/3.

Separation of tech environments

We keep development and production servers in different cloud environments, as per industry best practises. To avoid security or privacy issues or errors, we use different security principles for each environment and only give the requesting entity access to the data they require.

In-house Support

Our internal team of experts is there for you to quickly resolve issues and questions whenever needed.

Application Security

Encryption

When you connect your bank account with Verto, we help keep your data with best-in-class encryption protocols like the Advanced Encryption Standard and Transport Layer Security.

2-FA and Biometrics

We protect your Verto account with two-factor authentication, biometric Face ID, and Touch ID for added protection (2FA) on your iPhone app, to protect your account from being compromised, with a second method to verify your identity.

Fraud Detection

Verto employs fraud detection algorithms that keep learning and improving to keep funds safe from bad actors at all times.

The better way to pay and get paid in Canada

Our data promise.

Verto was founded on the principle that you have a right to your financial information. You should get to decide where, how, and with whom it’s shared. Your data is yours and yours alone.

We're committed to treating your data responsible.

We don't sell or rent your data to third-parties.

We commit to being transparent with all our customers.

Securely connect your bank or credit union