Vyzer encrypts data at rest and in transit.
Vyzer encrypts data at rest and in transit.
Vyzer does not store your banking or crypto account credentials.
Vyzer requires Two-Factor Authentication (2FA) login.
Vyzer hires cybersecurity experts to identify and address vulnerabilities before adversaries do.
Vyzer will never trade, sell, or share your private information or data with a third party.
Get startedHere are answers to some of the most frequently asked questions we receive regarding our security policies and protocols. If you have more questions, just email us at hello@vyzer.co
Does Vyzer have direct access to my online bank or crypto accounts?
No. Vyzer does not directly host your banking or crypto account credentials.
Vyzer uses third party financial account aggregator services – including Plaid, Yodlee, Salt Edge & Zabo – to connect to your accounts and keep your credentials safe. When you enter your banking credentials on your account, your credentials are sent directly to the respective service, but never to Vyzer’s servers. These platforms then provide Vyzer with a “ready only” interface, so we cannot access your specific credential or make transactions on your behalf.
Read more here about how Plaid, Yodlee, Salt Edge & Zabo adhere to industry leading practices for data security, regulatory compliance, and privacy.
Is my data encrypted?
Yes, the data in Vyzer is encrypted at rest and in transit., protecting your data from data breaches and from being intercepted. Your data is not end-to-end encrypted.
What are at rest and in transit encryption?
At rest encryption ensures your data is secure when being stored. At Vyzer, all of our databases and files are stored in Amazon Web Services (AWS) servers, which have their content encrypted while it sits idle and when it’s backed up. This protects against unauthorized copying, transfer or retrieval of user data from our servers. Even if someone was able to get access to a backup of the database, they wouldn’t have the key to decrypt it, making the data useless to them and protecting our users.
In transit encryption protects your data as it’s traversing the internet. Communication between our servers and your browser are secured via HTTPS, and our HTPS policy ensures no other protocol is used, which guarantees that all communication takes place over a secure connection.
What is end-to-end encryption?
End-to-end encryption makes the data “unreadable” by the very service or the app you used to create it. The data is only readable by the specific user.
Why isn't my data encrypted end-to-end?
End-to-end encryption withholds all of your data from Vyzer, but not having any access to your data would prevent Vyzer from performing several of its fundamental benefits and features. For example, we need occasional access to your data for background syncing, which ensures the safe transfer of your data to your beneficiary. Even though we can’t do end-to-end encryption, your data in Vyzer is indeed encrypted at-rest and in-transit.
What happens if Vyzer servers are breached?
First, your banking credentials will be totally safe, because we don't store any of your banking credentials. See the answer to the question, “Does Vyzer have access to my online bank and crypto account?” for more information on this.
Secondly, all your data in Vyzer is encrypted at rest on AWS servers. So, even if a hacker obtained a backup of the database, it’d be useless because they wouldn’t have the key to decrypt it, protecting all of your data.
It’s also unlikely that your data would be breached in transit. Vyzer’s communication between our servers and your browser is secured with HTTPS, and our HSTS policy ensures browsers can only ever connect to our platform over a secure connection.
Why is Two-Factor Authentication (2FA) login mandatory?
To put it simply, we require 2GA because your data will be more secure.
Customer passwords and user IDs are notoriously vulnerable and easy to hack, especially when customers choose easy-to-guess or repeated passwords. An additional vulnerability comes when people write down their passwords (in either online or physical files) where thieves and cyberthieves can discover them. 2FA makes data more secure with the use of one-time passwords (OTPs) and physical characteristics (like fingerprints and voice recognition), which are more difficult to crack and add another layer of security to your account.
How can I use Vyzer safely?
To add another layer of safety, you should not store any information in Vyzer that would be highly risky if it fell into the wrong hands. For example, please don’t store any passwords, credit card numbers, or crypto wallet private keys in Vyzer.You should store only the information or documents needed to help you track your wealth, or for your legal heir to know and claim your property.
If your data sharing needs require end-to-end encryption, don’t use Vyzer. Instead, we recommend considering password managers like LastPass and 1Password, but be sure to research these platforms and understand their complexities before using them.
Does Vyzer sell my data?
Vyzer NEVER sells your data.
Vyzer is funded solely by your subscription fee.
In specific instances when data is shared with third parties (typically for analytics), Vyzer makes sure they don’t sell it either.
If I delete my data, is it really deleted or can it be restored from backup?
When you delete your account, we delete all your data from our primary database immediately. We also notify our aggregators to stop connecting your account and to delete all of the data on their end.
We keep rotating backups for 30 days. So, your data will be removed from the backup in the next backup purge cycle.
Do we conduct external security audits?
Yes, we engage with external security firms to review our application security. We are committed to working with renowned security experts to audit our internal and external security practices on a regular basis.