Enterprise grade security
Know that your legacy is safe and secure
Keeping your data safe is our top priority. That’s why we continually invest in the best possible tools, practices, and processes to make sure your information is secure.
Integrate your favourite tools
How HeirWealth protects your data
Best practice international standards
Our processes are certified against ISO27001, known globally as the gold standard for information security management systems. This means we follow strict guidelines to protect the confidentiality, integrity, and availability of information.
Highly controlled data access
All of our APIs are secured using a combination of role-based and resource-based authorisation to strictly limit access to data. This means only users with authorisation by the head of the family can access information. HeirWealth also gives you the option to set-up two-factor authentication (2FA) for an added layer of security.
Penetration and vulnerability testing
All source code is automatically scanned for security vulnerabilities. We also run regular penetration and vulnerability tests, in addition to security assessments, to make sure we have the right security controls in place.
Restricted document access
Our document vault uses Microsoft Blob storage, and the documents for your family are kept completely separate from any other users of any other family. Every time documents are accessed, we use time-sensitive security keys that limit access only to the users or family members that have been given permission.
Data encryption
Our zero-knowledge architecture makes sure all personal or identifiable data is encrypted at rest, and all API and web traffic is encrypted in transit. This means only authorised users will have access to your data, making it impossible (even for us) to access details such as account numbers, locations, and asset values.
Strengthened security with Microsoft
We use locally deployed Microsoft Azure Cloud Infrastructure, giving us access to the many advantages of Microsoft cloud architecture, such as built-in infrastructure maintenance, security patching, backups, and scaling.
Your security questions answered
Will HeirWealth have access to my information?
HeirWealth is built using a zero-knowledge architecture, which means that even our developers and your advisers cannot access your encrypted personal information, unless you allow them access.
Only the people you grant permission will have access to your information.
For more information, contact HeirWealth via info@heirwealth.com
Where is my personal information located?
Your personal data is securely stored in a Microsoft Azure cloud database, which is located in the country where you registered your HeirWealth account.
This means if you signed up in Australia, your data will be stored in Australia.
For more information, contact HeirWealth via info@heirwealth.com
Do you sell or share my personal information?
No, your personal identifiable data will not be sold or shared. You can however share it with people you grant access to, such as a family member or your adviser on the HeirWealth platform.
HeirWealth encrypts all your data and stores it in a secure location.
However we may share deidentified customer data with trusted third parties that assist us in delivering and improving the HeirWealth app.
These service providers are contractually bound to protect the confidentiality and security of your deidentified personal information.
For further details, please see our privacy policy.
What financial data do you collect?
At HeirWealth, we only collect the necessary data to run HeirWealth, and retain all data under a strict security environment.
The data we collect is either provided directly by you or your financial institution, only after you have provided your consent.
For more information, contact HeirWealth via info@heirwealth.com
Didn’t find the answer you are looking for? Contact our support