We're serious about security.
Secure by design. Your money is in safe hands.
At Neat, our customer data is always secure. We function via a proactive “Defense in Depth” concept. In short, this system places multiple layers of security controls throughout our IT system. This approach allows us to defend our system against any attack using several methods. In other words, we’re always prepared.
We align ourselves with the strictest Security Service measures. Therefore we guarantee the protection and privacy of our data. Above all, security is always a priority.
Neat is PCI DSS (Payment Card Industry Data Security Standard) compliant. We’re compliant because we prioritize cybersecurity controls and robust business practices. We meet the industry security standards to secure our customer card data.
This standard outlines strict requirements set by the payment card industry. Therefore, the rules are designed to ensure that organizations that process, store or transmit credit card data maintain a highly secure environment. Moreover, they ensure we uphold the highest data security and privacy standards. Neat is certified a Level 1. This is the highest level of certification.
We also maintain high levels of data security. All of our data is encrypted in transit via industry best practices. We use Transport Layer Security (TLS) version 1.2. Moreover, we encrypt at rest across our infrastructure using minimum SHA-256. Furthermore, all credentials are salted, hashed and stored as in the database.
We use role-based access control (RBAC) to restrict access to authorized users and enforce data security.
At Neat, when we develop our applications we keep security in mind. It is a vital part of our process. All code is peer-reviewed. All code is checked for threats and vulnerabilities. For example, this includes the OWASP Top 10 web and mobile security risks.
We use security testing. This helps us examine the code to find software flaws. In addition, we also look at our applications to find weaknesses that an attacker could exploit.
It is also important to have a secure connection. We use complexity password rules and encrypted data in transit. In addition, we have implemented 2 Factor Authentication (2FA). This is an extra layer of security. It is used to make sure that customers trying to gain access to our website and application are who they say they are. We know that every layer of security is vital to create a secure service.
At Neat we perform penetration testing every year. This occurs at both the application and infrastructure by third party companies. In addition, we run weekly automated scanning to identify known vulnerabilities. Above all, security is the priority.
In addition, we use technology to monitor suspicious user behavior. They help us identify account takeover attacks, brute force attacks or a phishing scam. For any high risk scoring case, we block access and force a password reset.
Every secure service needs a strong foundation. Our infrastructure is hosted on Amazon Web Services (AWS). They provide strong and reliable security services to protect our service.
For more information about their security practices, see here.
Finally, we extend our security to employees. All our employees undergo extensive background checks. In addition, they must attend information security awareness training. Moreover, staff who handle sensitive data receive tailored training. We also launched various campaigns to improve employee security awareness. Further, we take general employee welfare seriously.
All employees must sign and follow all our internal security policies and procedures. Above all, secure employees ensure a secure service.
Finally, for more information about careers at Neat, see here.
Please contact our Customer Service team immediately if you think your account has been compromised. Or if you have any concerns on security or privacy issues.
Alternatively, if you have any questions or want to learn more about security at Neat, you can find more information in our Neat Business FAQ.
Your money is in safe hands!
Neat is here to help. Your funds are held in segregated bank accounts at licensed banks. We take pride in our security. Depending on the type of currency wallet you sign up for, your funds will be stored in Hong Kong or the U.K. Moreover, this will be in accordance with a robust safeguarding policy. Your funds are safe.
Neat Limited is licensed as a Money Service Operator (No. 19-06-02796) and a Money Lender (No. 0645/2022) in Hong Kong.
Neat Asia Limited is licensed as a Trust and Corporate Service Provider (TC007913) in Hong Kong.
Neat Global Limited is a registered agent of PayrNet Limited which is an Electronic Money Institution authorised by the Financial Conduct Authority under the Electronic Money Regulations 2011 (900594) in the United Kingdom.