Committed to data security you can trust
We protect your firm and your clients’ data with robust, enterprise-grade security measures designed for the demands of modern accounting.
Security is key
Trust is hard-earned and easily lost, which is why protecting your data is fundamental to everything we do. Silverfin is GDPR-compliant by design, with data encrypted at all times. We carry out continuous penetration testing and regular best-practice security reviews to ensure the platform remains secure as threats evolve.
ISO27001 certified
Our commitment to data security is backed by independent verification. Silverfin has been ISO 27001 certified since 2017, with our people, infrastructure and technology regularly audited by external experts to meet – and exceed – recognised industry standards. This certification reflects our long-term commitment to keeping your data safe.
World-class infrastructure
The Silverfin cloud infrastructure runs on Google Cloud Platform, chosen for its best-in-class security and resilience. Data centres are monitored 24/7 and protected by advanced physical and digital safeguards, including biometric access controls and video surveillance. Google Cloud is SOC 1, SOC 2 and SOC 3 certified, providing an additional layer of assurance for your firm and your clients.
Any questions?
Reach out to our Information Security Officer at Silverfin, they’ll be happy to help.
Security you can trust
Encryption in transit
Whenever your data moves between systems, it’s protected using TLS 1.2/1.3 encryption.
Encryption at rest
All stored data — including backups — is encrypted using AES-256-GCM.
Data sovereignty
Your data is fully logically segregated and is never shared with other Silverfin customers.
Single Sign-on (SSO)
No need to create or remember additional passwords. Silverfin integrates easily with your existing access flows using single sign-on.
Multi-Factor Authentication
Passwords alone are no longer enough. If you’re not using SSO, Silverfin allows you to enable native multi-factor authentication for all users.
Your data, your rules
You always retain ownership of your data. If you choose to leave Silverfin, your data will be securely removed within three months of your request, including backups. For full details, please refer to our Privacy Policy and Data Processing Addendum.
Security all-around
Year-round security training & phishing simulations
Around 90% of data incidents involve some form of human error. That’s why Silverfin works with Riot Security, an AI-powered solution that combines realistic phishing simulations with interactive, high-quality security awareness training. This helps our teams stay alert and continuously improve their security reflexes.
Our apps are being tested all day, everyday
Silverfin partners with Intigriti, Europe’s leading ethical hacking and bug bounty platform. Ethical hackers from around the world are invited to test our applications, ensuring continuous vulnerability testing and rapid identification of potential issues. Testers can contact us to be added to the programme.
Credentials protected by the strongest vaults
Every Silverfin employee has access to a personal vault in 1Password. We equip our teams with the right tools to build secure habits, ensuring all credentials are stored safely in a multi-factor-protected vault.
Artificially Intelligent (and Truly Transparent!)
We use AI both internally and within our products to combine innovation with reliability, delivering better services while safeguarding your data with strong security and privacy controls.
All AI training takes place within Silverfin’s secure environments
Our AI models never disclose raw customer data
AI improves through pattern recognition on aggregated, mapped files
Nimbly NIS2 compliant
We’ve always been committed to the highest cybersecurity standards, and the NIS2 Directive strengthens that commitment.
- We’re actively implementing NIS2 requirements to enhance cyber resilience
- Our ISO 27001:2022 certification is recognised by NIS2 as assurance of a robust security programme
Proudly part of the Visma Security Program
As Visma members, we enjoy the benefits from a comprehensive, joint security framework, which also further benefits our customers and users! Some highlights:
- Access to advanced security technologies to safeguard your data
- Regular independent assessments to ensure protection using the latest security measures
- 24/7 security monitoring through a dedicated Security Operations Centre (SOC)
This brings peace of mind for us and for you as every aspect of our service is backed by Visma’s proven security framework
