Security Policy

Last Updated: 10 September 2025

Our Commitment to Security

At FINavigator Hub Ltd, we take the security of your data seriously. We implement robust security measures to protect your personal and financial information from unauthorized access, alteration, disclosure, or destruction.

This security policy outlines our commitment to protecting your data and the measures we have in place to do so.

Data Protection Measures

We employ the following security measures to protect your data:

• Encryption: We use industry-standard encryption protocols (TLS/SSL) to protect data transmission between your device and our servers. This ensures that your data is encrypted during transit and cannot be intercepted by unauthorized parties.
• Secure Data Storage: All sensitive financial data and personal information stored in our databases is encrypted at rest using modern encryption standards.
• Access Controls: We implement strict access controls and authentication procedures to ensure that only authorized personnel can access our systems and your data. Our employees are granted access on a need-to-know basis.
• Regular Security Audits: We conduct regular security audits and vulnerability assessments to identify and address potential security weaknesses.
• Secure Development Practices: Our development team follows secure coding practices and performs security testing throughout the development lifecycle.
• Monitoring Systems: We maintain 24/7 monitoring systems to detect and respond to unusual activities or potential security threats.
• Firewall Protection: Our infrastructure is protected by enterprise-grade firewalls to prevent unauthorized access.
• Regular Updates: We regularly update our systems and software to address security vulnerabilities and enhance protection.

Account Security

We implement the following measures to ensure the security of your account:

• Secure Password Storage: We store passwords using strong, one-way hashing algorithms with added salt, which means we never store your actual password.
• Strong Password Requirements: We encourage the use of strong, unique passwords to protect your account.
• Account Activity Monitoring: We monitor account activities for suspicious behavior and will alert you of any unusual activity.
• Session Management: We implement secure session handling, including automatic timeout after periods of inactivity.

Data Breach Response

In the unlikely event of a data breach, we have a comprehensive response plan in place:

• Immediate assessment and containment of the breach
• Prompt notification to affected users as required by law
• Cooperation with relevant authorities
• Implementation of additional security measures to prevent similar incidents

Third-Party Service Providers

We may use third-party service providers to assist us in providing our services. These providers are carefully selected and are required to maintain appropriate security measures that align with our standards. We have data processing agreements in place with these providers to ensure they handle your data securely and in compliance with applicable laws.

Security Awareness Training

Our team members undergo regular security awareness training to stay informed about the latest security threats and best practices for protecting user data.

Your Role in Security

While we take extensive measures to protect your data, you also play an important role in maintaining security. We recommend the following practices:

• Use strong, unique passwords for your FINavigator Hub account
• Do not share your account credentials with others
• Keep your device's operating system and browser up to date
• Be cautious of phishing attempts—we will never ask for your password via email
• Log out of your account when using shared or public computers
• Contact us immediately if you suspect any unauthorized access to your account

Compliance with Security Standards

Our security practices are designed to comply with industry standards and relevant regulatory requirements, including:

• General Data Protection Regulation (GDPR)
• UK Data Protection Act 2018
• Payment Card Industry Data Security Standard (PCI DSS) where applicable
• ISO 27001 best practices for information security management

Security Updates

We continuously review and enhance our security measures to address emerging threats and technologies. This security policy may be updated from time to time to reflect these improvements.

Reporting Security Concerns

If you identify a potential security vulnerability or have concerns about the security of our platform, please contact our security team immediately at security@finavigator.com.

Contact Us

If you have any questions about our security practices, please contact us at: