Security, Privacy, and Compliance
FinGoal Serves Trusted Financial Brands
FinGoal analyzes consumer credit and debit card spending in order to best understand each user at an individual level. FinGoal matches individuals with automated insights, advice, and recommendations to optimize their daily spending as well as provides banks with user personas to better target offer.
Upon consumer authorization, FinGoal is sent feeds of consumer transactions from checking and credit accounts. At no point does FinGoal ever transmit or hold a customer’s account numbers or password. FinGoal does not hold money for customers.
Although FinGoal never touches a user’s most financial sensitive information (e.g. SSN or card numbers), we do hold something equally important: their trust. As a white-labeled solution serving trusted financial brands, FinGoal must act with great care and stewardship over the entire data and experience flow.
In the interest of transparency, FinGoal makes our policies, controls, and architecture public. Security by obscurity has no place in modern financial services.
Policies
View Full Information Security Policy
INTRODUCTION page 4
ACCESS CONTROL POLICY page 5
CHANGE MANAGEMENT POLICY page 9
CORRECTIVE ACTION POLICY page 14
ETHICS & ANTI-CORRUPTION POLICY page 15
GOVERNMENT DATA REQUEST POLICY page
22
INCIDENT MANAGEMENT POLICY page 23
MONITORING POLICY page 27
NETWORK AND SYSTEM SECURITY POLICY page 28
INFORMATION SECURITY POLICY page 30
PANDEMIC RESPONSE PLANNING POLICY page 31
PEOPLE SECURITY POLICY page 34
PHYSICAL SECURITY POLICY page 35
PRIVACY IMPACT ASSESSMENT POLICY page 36
RISK MANAGEMENT POLICY page 39
SECURITY ORGANIZATION AND MANAGEMENT POLICY page 40
VENDOR MANAGEMENT POLICY page 41
VULNERABILITY MANAGEMENT POLICY page 43
CHANGE CONTROL page 48
Privacy Policy