KIPPIN Security

At KIPPIN, your information is encrypted (converted into unrecognizable code) using industry standard data encryption. This protects your personal and financial data. We use 128 bit SSL (Secure Socket Layer) for all data communication which is the same level of encryption technology used by all financial institutions.

We perform regular data security audits and monitor our security systems to identify and manage threats.

Our entire cloud infrastructure is placed behind multiple firewall layers to safeguard data and only allow authorized access to the data


How are your banking details and transactions secured?

KIPPIN partnered with Envestnet | Yodlee, a 3rd party financial institution to import your banking transactions. We do not store any of your banking details or credentials. Envestnet | Yodlee adheres to leading financial industry practices for security, risk, and compliance management.

Security and Risk Management

Yodlee follows the leading financial industry best practices for security, privacy, risk, and compliance management. Yodlee follows applicable security and risk management standards required to engage with consumers and their financial data.

For additional information, please go to:

Strict Privacy Standards

Protecting the personal information of those who use our customers’ products and services is a top priority. Yodlee never sells consumers’ personally identifiable information (PII) to anyone. We typically receive transaction data elements in a non-identifiable form that does not contain personally identifiable information. As an additional layer of protection, we employ systems that scrub any data potentially containing PII in accordance with the highest privacy standards and industry best practices.


All card numbers are encrypted at rest with AES-256. Decryption keys are stored on separate machines. None of Stripe’s internal servers and daemons are able to obtain plaintext card numbers; instead, they can just request that cards be sent to a service provider on a static whitelist. Stripe’s infrastructure for storing, decrypting, and transmitting card numbers runs in separate hosting infrastructure, and doesn’t share any credentials with Stripe’s primary services (API, website, etc.).

How are your payment details secured?

KIPPIN uses Stripe in partnership processing payments on our platform. We do not store any payment information on our servers. Stripe is a technology company with software which allows individuals and businesses to receive payments over the Internet. Stripe provides the technical, fraud prevention, and banking infrastructure required to operate on-line payment systems.


Stripe has been audited by a PCI-certified auditor and is certified to PCI Service Provider Level 1. This is the most stringent level of certification available in the payments industry. To accomplish this, we make use of best-in-class security tools and practices to maintain a high level of security at Stripe.

For additional information, please go to: