Skip to main content

How We Protect You

Your financial data is incredibly sensitive. We treat it that way.

The Short Version

  • ✅ Bank-level encryption (256-bit)
  • ✅ We NEVER see or store your bank passwords
  • ✅ We can only view your data — never move money
  • ✅ Your data is never sold
  • ✅ Same security used by Venmo, Robinhood, and major banks

How Bank Connections Work

When you connect a bank account, here's what actually happens:

1

You Click "Connect"

We open a secure window to our banking partner (Stripe or Plaid).

2

You Log In to Your Bank

You enter your credentials on your bank's actual website — not ours. We never see your password.

3

Your Bank Creates a Token

Your bank gives us a special access token. This token lets us view (not change) your account info.

4

We Sync Your Data

Using that token, we can see your balances and transactions. That's it.

What We CAN Do

  • ✅ See your account balances
  • ✅ See your transaction history
  • ✅ See account names and types

What We CAN'T Do

  • ❌ Move your money
  • ❌ Make transfers or payments
  • ❌ Change any account settings
  • ❌ See your bank password
  • ❌ Access your account without the token

Even if someone broke into our systems (they haven't, and we work hard to keep it that way), they couldn't move your money.

Encryption

All your data is encrypted:

In Transit — When data moves between your phone and our servers, it's encrypted with TLS 1.3 (the latest standard, same as banks use).

At Rest — When data is stored, it's encrypted with AES-256 (the encryption standard used by the US government for classified information).

Our Partners

We use trusted banking partners:

Stripe — Processes billions of dollars for companies like Amazon, Google, and Shopify.

Plaid — Connects 12,000+ institutions. Used by Venmo, Robinhood, Coinbase, and thousands of apps.

Both are:

  • SOC 2 Type II certified
  • Regularly audited by third parties
  • Trusted by millions of users

What If Something Goes Wrong?

If There's a Data Breach

We've never had one, but we're prepared:

  • You'd be notified within 72 hours
  • We'd help you protect your accounts
  • We have incident response plans ready

If You Lose Your Phone

  • Log in on another device
  • Go to Settings → Security → Sessions
  • Revoke access from the lost device

If You See Suspicious Activity

Email security@antfinance.app immediately. We respond to security issues within 24 hours.

Tips to Stay Safe

Use Two-Factor Authentication

Enable 2FA in Settings → Security. It takes 2 minutes and dramatically improves security.

Use a Strong Password

If you signed up with email, use a unique password that's at least 12 characters.

Check Login Notifications

We email you when there's a login from a new device. If it wasn't you, change your password immediately.

Questions?