Security Portal

Get access to this Security Portal
  • Review sensitive security details
  • Unlock documents
  • Ask for more information
  • Reclaim access anytime
Had access before? Reclaim access

Overview

Plaid is focused on democratizing financial services through technology. We build beautiful consumer experiences, developer-friendly infrastructure, and intelligent tools that give everyone the ability to create amazing products that solve big problems. Plaid helps you safely connect your financial accounts to the apps and services you love. We were founded on the principle that consumers have a right to their financial information. Consumers decide where, how, and with whom it’s shared. That’s why every Plaid product is built with meaningful control and security in mind.

Compliance

ISO 27001 Logo
ISO 27001
ISO 27001 SoA Logo
ISO 27001 SoA
ISO 27701 Logo
ISO 27701
SOC 2 Logo
SOC 2
TruSight Logo
TruSight
Get access to this Security Portal
  • Review sensitive security details
  • Unlock documents
  • Ask for more information
  • Reclaim access anytime
Had access before? Reclaim access

Plaid is reviewed and audited by

SchellmanSchellman
ArmaninoArmanino
Bishop FoxBishop Fox
TruSightTruSight

Documents

All
Public
Private
Data Flow Diagram
Pentest Report
ISO 27001
ISO 27001 SoA
ISO 27701
SOC 2
TruSight
CAIQ
SIG
Cyber Insurance
Acceptable Use Policy
Access & Authentication Controls Policy
Backup Policy
Business Continuity and Disaster Recovery Plan
Data Classification & Handling Policy
Encryption & Key Management Policy
Incident Response Policy
Information Security Policy
Network Security Policy
Password Policy
Risk Management Policy
Software Development Lifecycle
Vendor Management Policy
Vulnerability Management Policy
Disaster Recovery Tests
Financial Statements Audit
OFDSS
Plaid Basic Information
Proof of Business Document
W-9

Business Continuity

Recovery Time Objective24 hours
Recovery Point Objective24 hours
HostingMajor Cloud Provider

Product Security

Audit Logging
Data Security
Integrations
See more

Reports

Data Flow Diagram
Pentest Report
SOC 2 Report
See more

Self-Assessments

CAIQ
SIG

Data Security

Access Reviews
Backups Enabled
Data Erasure
See more

App Security

Responsible Disclosure
Bot Detection
Code Analysis
See more

Legal

Cloud HostingHeroku
Cyber Insurance
Privacy Policy
See more

Data Privacy

Chief Privacy Officer
Cookies
Data Breach Notifications
See more

Access Control

Data Access
Logging
Password Security

Infrastructure

Status Monitoring
Amazon Web Services
Anti-DDoS
See more

Endpoint Security

Disk Encryption
DNS Filtering
Endpoint Detection & Response
See more

Network Security

DMARC
Firewall
IDS/IPS
See more

Corporate Security

Asset Management Practices
Email Protection
Employee Training
See more

Policies

Acceptable Use Policy
Access & Authentication Controls Policy
Anti-Malware Policy
See more

Security Grades

Qualys SSL Labs
SSL labs report
A

Knowledge Base

  • What external audits do you undergo, if any?
  • What is Plaid?
  • Where are the data processing activities performed for Plaid products?
  • Can you provide us some basic business information regarding Plaid?
  • PCI AoC covering scope for services provided.
See more

Trust Center Updates

Plaid is Unaffected by the MOVEit Vulnerability

VulnerabilitiesCopy link

Earlier this summer, Plaid Security was made aware of a vulnerability that could potentially affect those using the MOVEit Transfer software.

Plaid does not use, nor has ever used, MOVEit. As such, Plaid is unaffected by this vulnerability.

Published at N/A*

Renewed Certificate of Insurance (Cyber) now available

GeneralCopy link

Renewed Certificate of Insurance (Cyber) for Plaid Inc is now available. Click here to request the artifact.

Published at N/A*

Identity Verification and Compliance Platform SOC2 report now available

ComplianceCopy link

The latest SOC2 Type 2 report for Identity Verification and Compliance Platform (previously known as Cognito) is now available in our Security Trust Portal Click this link to request access.

Published at N/A

If you need help using this Trust Center, please contact our Cybersecurity Risk team.

Contact Support

If you think you may have discovered a vulnerability, please send us a note.

Report Issue
Powered BySafeBase Logo