BetterWealth’s physical infrastructure is hosted and managed within Google’s secure data centers which use Google Cloud Platform (GCP) technology. Google continually manages risk and undergoes recurring assessments to ensure compliance with industry standards. Google’s data center operations have been accredited under:
FIPS 140-2 Validated
ISO 27001, ISO 27017, and ISO 27018
SOC 1, SOC 2, and SOC 3
PCI DSSSEC Rule 17a-4(f), CFTC Rule 1.31(c)-(d), and FINRA Rule 4511(c)
We do not collect any personal information about you unless you voluntarily provide it to us. You may be required to provide certain personal information when you elect to use certain products or services. When this occurs, only authorized employees are permitted to access your information.
Data at Rest
All your personally identifiable information — including but not limited to your name, email, address, and uploaded documents — is immediately encrypted when we store it. This data is encrypted using AES-256 and stored in the Google Cloud Platform.
Our application traffic runs entirely over 256-bit encrypted TLS (https). Communications over the Internet to our public cloud services are encrypted in transit. Data stored on Google’s infrastructure is automatically encrypted at rest and distributed for availability and reliability. This helps guard against unauthorized access and service interruptions.
Reliability and Backup
Google’s network and infrastructure have multiple layers of protection to defend against denial-of-service attacks. All of your data is backed up daily. BetterWealth maintains at least 30 days of backup data at any given time. In addition, we continuously take snapshots of the database. BetterWealth can restore data to any point in time between the earliest backup and typically within 5 minutes of the current time.
BetterWealth replicates customer data to at least two different locations at any given time to protect against failure or local disaster. The BetterWealth platform is designed for stability, scaling, and inherently mitigates common issues that lead to outages while maintaining recovery capabilities. Our platform maintains redundancy to prevent single points of failure, is able to replace failed components, and utilizes multiple data centers designed for resiliency. In the case of an outage, the platform is deployed across multiple data centers using current system images and data is restored from backups. BetterWealth reviews platform issues to understand the root cause, impact to customers, and improve the platform and processes.
BetterWealth uses PCI compliant payment processor Stripe for encrypting and processing credit card payments. Stripe has been audited by a PCI-certified auditor, and is certified to PCI Service Provider Level 1. This is the most stringent level of certification available. Credit card numbers are not stored on the BetterWealth platform.
Google data centers feature a layered security model with custom-designed electronic access cards, alarms, vehicle access barriers, perimeter fencing, metal detectors, and biometrics. The data center floor features laser beam intrusion detection. Google data centers are monitored 24/7 by high-resolution interior and exterior cameras that can detect and track intruders. Only approved employees with specific roles may enter.
Software access is limited to BetterWealth staff and requires username, password and software key authentication. This eliminates the possibility of unauthorized access to any of our systems.
BetterWealth will investigate any reported vulnerability. If you would like to report a vulnerability or have a security concern regarding BetterWealth services, please email firstname.lastname@example.org. Please provide full details of the suspected vulnerability so our security team may validate and reproduce the issue.