Security

Your security is our top priority. Learn how we protect your data and funds.

Our Security Commitment

At PALS, we understand that security is fundamental to trust in financial services. We employ industry-leading security measures and best practices to protect your personal information, financial data, and transactions.

Our security infrastructure is continuously monitored, tested, and updated to defend against evolving threats. We work with leading security experts and follow international security standards.

Data Encryption

End-to-End Encryption

All sensitive data transmitted between your device and our servers is encrypted using TLS 1.3, the latest encryption standard. This ensures that your information cannot be intercepted or read by unauthorized parties.

Data at Rest

Your data stored on our servers is encrypted using AES-256 encryption, the same standard used by banks and government agencies. Encryption keys are managed through a secure key management system.

Database Security

Our databases are protected with multiple layers of security, including encryption, access controls, and regular security audits. Only authorized personnel with specific roles can access sensitive data.

Authentication & Access Control

Multi-Factor Authentication (MFA)

We strongly recommend enabling multi-factor authentication for your account. MFA adds an extra layer of security by requiring a second form of verification (such as a code from your phone) in addition to your password.

Biometric Authentication

Our mobile app supports biometric authentication (fingerprint and face recognition) for quick and secure access to your account.

Session Management

Active sessions are monitored and automatically logged out after periods of inactivity. You can view and manage active sessions from your account settings.

Fraud Prevention

We employ advanced fraud detection systems that monitor transactions in real-time to identify and prevent suspicious activity:

  • Machine learning algorithms that detect unusual patterns
  • Real-time transaction monitoring and alerts
  • Device fingerprinting to identify trusted devices
  • Behavioral analysis to detect account takeover attempts
  • Integration with global fraud prevention networks

If we detect suspicious activity, we may temporarily restrict your account and contact you to verify the activity. This helps protect you from unauthorized access and fraudulent transactions.

Infrastructure Security

Secure Cloud Infrastructure

Our platform is hosted on secure, enterprise-grade cloud infrastructure with redundant systems and automatic failover capabilities. Data is stored in geographically distributed data centers for resilience.

Network Security

Our network is protected by firewalls, intrusion detection systems, and DDoS mitigation services. We regularly conduct penetration testing and vulnerability assessments.

Regular Security Audits

We conduct regular security audits, both internally and through independent third-party security firms. These audits help us identify and address potential vulnerabilities before they can be exploited.

Compliance & Certifications

PALS maintains compliance with industry standards and regulations:

  • PCI DSS compliance for payment card data security
  • GDPR compliance for data protection
  • SOC 2 Type II certification for security controls
  • ISO 27001 information security management
  • Regular compliance audits and assessments

How You Can Help

Security is a shared responsibility. Here's how you can help keep your account secure:

✓ Use Strong Passwords

Create a unique, complex password for your PALS account. Use a combination of letters, numbers, and symbols, and avoid using the same password for multiple accounts.

✓ Enable Multi-Factor Authentication

Add an extra layer of security by enabling MFA. This significantly reduces the risk of unauthorized access even if your password is compromised.

✓ Keep Your App Updated

Always use the latest version of the PALS app. Updates often include security improvements and bug fixes.

✓ Be Wary of Phishing

Never share your account credentials or personal information in response to unsolicited emails, calls, or messages. PALS will never ask for your password via email or phone.

✓ Monitor Your Account

Regularly review your account activity and transaction history. Report any suspicious activity immediately through our Help Center.

✓ Use Secure Networks

Avoid accessing your account on public Wi-Fi networks. Use a secure, private network or a VPN when possible.

Reporting Security Issues

If you discover a security vulnerability or suspect unauthorized access to your account, please report it immediately:

Security Email: security@pals.com

Help Center: Available 24/7 for immediate assistance

Emergency: Contact us immediately if you notice unauthorized transactions

We take all security reports seriously and will investigate promptly. We also have a responsible disclosure program for security researchers who discover vulnerabilities.

Insurance & Protection

Your funds are protected through multiple layers of security and insurance. We maintain insurance coverage and follow best practices to ensure the safety of your assets. In the unlikely event of unauthorized transactions due to security breaches on our end, we have procedures in place to investigate and resolve issues promptly.