Your financial data deserves the highest level of protection. Here's exactly how we keep it safe.
All data stored on our servers is fully encrypted at rest. Your information is never left exposed, regardless of what layer it sits at.
We keep our SSL certificates up to date at all times. All communication between your browser and our servers is secured in transit.
We don't share servers with anyone. Our infrastructure is entirely under our control, meaning your data never sits alongside another company's.
Your data is stored on Amazon S3 and automatically backed up every day, so you're protected against data loss without lifting a finger.
Access to our servers and databases is restricted to a small core team on a strict need-to-know basis, in line with security best practices.
Every document uploaded to DayFive is automatically scanned for viruses and malware before it is processed, protecting you and your organisation from contagion.
We don't use third-party services for auxiliary data processing. Every operation runs on infrastructure we own and control. That means no data leaves our environment to be handled by an external vendor, and no surprises about where your information ends up.
All AI models we run are hosted on our own servers. We don't send your data to third-party AI providers for processing. When DayFive uses AI to help you, it happens entirely within our controlled environment, with no external service ever touching your financial data.
Access to our servers and databases is granted to only a core set of individuals within the team. We follow the principle of least privilege, ensuring that no one has access to systems beyond what their role requires. This reduces the attack surface and means your data is only ever accessible to the people who genuinely need it to keep the platform running.
Any document you upload to DayFive is automatically scanned for viruses and malware before it enters our system. This protects not just your own data, but the integrity of the entire platform, preventing malicious files from ever reaching our processing pipeline.
We are actively working towards our ISO 27001 certification, the internationally recognised standard for information security management. This process involves a rigorous review of our policies, processes, and controls, and reflects our commitment to meeting the highest bar for how we handle your data.
If you have a specific security concern, want to report a vulnerability, or need more detail about our practices, we'd love to hear from you.
Get in touch with our team