Security Statement

How we keep you secure.

A plain-language summary of the protections behind Hello Bertie. Our internal Information Security Policy holds the full detail.

Your money stays with your bank

Hello Bertie never holds your funds. We only pass on the payment instructions you authorise, and we only connect to your bank with your explicit permission through secure, regulated open-banking links.

Strong sign-in

We use multi-factor authentication before you can connect an account or make sensitive changes, in line with the regulator's strong-customer- authentication rules.

Encryption everywhere

Your data is encrypted both when it travels to and from the app and when it's stored on our systems.

Strict access

Only authorised team members can access systems holding financial data, always with multi-factor authentication, on a need-to-know basis, and every access is logged.

We hunt for weaknesses

We continuously scan our systems and our staff and contractor devices for vulnerabilities and patch them quickly, and we have independent security experts test our defences regularly.

We watch for trouble

We monitor our systems around the clock, and we have a tested plan for responding to any security incident — including notifying you and the regulators promptly if your data is ever affected.

Questions? Email [security email].