Learn

FIRST TIME INVESTORS

How pearler manages security

Profile Piture
By Nick Nicolaides

2020-12-103 min read

As a fintech startup cyber-security is important and the steps pearler takes to protect it's users and platform like encryption, are summarised here.

blog cover photo

**NOTE: this article is no longer maintained. For the latest info on how Pearler manages your security, visit https://pearler.com/security **

We take risk management very seriously as a fintech startup.

This is a quick guide to some of the FAQs we get in relation to security. If we don't cover something that's on your mind, drop us a note at help@pearler.com.

What are some of the key security measures in place?

Our approach to Compliance, Governance and Risk Management covers a range of topics including security, KYC/AML, personnel and operations considerations. In conjunction with Sanlam Private Wealth, OpenMarkets, DigitalID and Macquarie Bank we have documented policies and procedures in accordance with ASIC's licensing requirements.

In relation to your specific query, some of the ways we manage security are as follows:

  • We use modern AWS infrastructure and security systems to ensure that our infrastructure is industry standard.
  • All financial movements require two-factor authentication (2FA) to approve or modify.
  • We ensure users have appropriately complex passwords, which, when combined with 2FA is an industry best practice approach to preventing breaches.
  • Phone call confirmation with any user who needs to change bank details to ensure the request is coming from the right person.
  • Separation of duties across tech and financial actions including opening accounts, authorising direct debit requests, settling trades.

Who inside pearler has access to my data?

We are a small team of people right now (but growing), which means we can keep a very tight handle on everything happening within pearler. We take both the separation of duties between the team and the cofounders, as well as training, very seriously. Every employee is provided with training in accordance with our licensing requirements as well as background and reference checks. At the core of these procedures are pearler's co-founders, who protect every aspect of pearler personally. We have specific policies and procedures in place so that as we grow we can identify risks and gaps before they happen and can deal with them, we recognise that security is a never ending process.

OK, but if something bad happens you have insurance right?

Yes. In accordance with our licensing requirements as well as our relationship with Sanlam Private Wealth Pty Ltd, we have insurance in place for client claims.

What about cash?

Pearler interacts with users' banks via its integration with Macquarie Bank only, here is a little more info:

  • Macquarie bank requests deposits and sends returns to users' banks exclusively using direct debit authorisations in accordance with the instructions pearler receives from its users from time to time.
  • Macquarie and users' banks communicate within the standard direct debit honour/dishonour timeframes (usually max. 3 business days).

Because we only use direct debit (either one-off debits or recurring) this may not be possible to use with some term deposit, credit card or high interest saver accounts.

If you're in beta right now, are you live or still testing?

Our platform is live, we are fully licensed via Sanlam Private Wealth Pty Ltd and once your account is set up and KYC complete you will have access to the full current functionality. We are calling it beta phase because it is still early days for our platform and we are only granting access to a small number of enthusiastic long term investors to make sure we get the right type of feedback. Of course, as we are refining the platform every day, our beta users will notice iterative changes in the user experience. We encourage our beta users to provide any observation or feedback about an issue or change to help us keep improving.

Where is your PDS?

The key documents that provide information about how pearler operates and our relationship to users are our Financial Services Guide, Privacy Policy, T&Cs and Disclaimers. Please see these documents attached in PDF in the meantime. These documents are shortly being made available on the public site, and are available as part of the platform sign up. As we do not operate a managed investment scheme or provide personal financial advice etc, we do not have a PDS.

We are also constantly learning more about this topic as the online universe continues to evolve and will refine our systems and protections on an ongoing basis. This includes working with the next generation of cyber security providers to design a risk management plan to grow with pearler.

We want to make sure our customers are comfortable, so if you have any questions, please don’t hesitate to contact us via help@pearler.com or on live chat during trading hours.

If this was helpful, you might also be interested in reading our blog on how pearler protects your cash.

Thanks for reading,

Nick

At Pearler, we pride ourselves on the quality of the general financial advice we give. Please note though, that this advice has not been tailored for you. You have unique financial goals, circumstances and needs which may make this advice inappropriate, and it is important that you know whether it applies to you. If you are unsure we urge you to speak to someone you trust who is competent with money and understands your individual needs, whether they be a trusted friend or accredited professional.

WRITTEN BY
Author Profile Piture
Nick Nicolaides

Nick Nicolaides is the co-founder and CEO at Pearler.

first trade free
first trade free

Your first trade is free after
signing up to Pearler!

Home