FAQ - How does Konfir keep my data secure?

Data security is our top priority. We use best-in-class security measures to ensure your information is safe and protected.


What makes Konfir secure?

Data minimisation: We only request the data required for your verification.

No ongoing access: We use one-time access requests, which means we do not maintain any continuous access to your accounts. Once your verification is complete, our access is immediately closed.

Read-only access: Konfir has no ability to make changes to your accounts, only read certain data with your consent.

Consent-driven: Every step of a Konfir verification is powered by you providing authorisation/consent first. Nothing will be shared without your consent

How we secure your data

Banking security: We use the UK’s Open Banking system, which is underpinned by strong security measures implemented by your bank and regulated by the UK Government’s Financial Conduct Authority (FCA)

Payroll security: Your data is securely shared through Application Programming Interfaces (APIs) connected to your employer’s payroll/HR system. Our payroll partners are subject to regulation and oversight.

HMRC security: Data is accessed from your Government Gateway account, under your control, and with your consent via APIs provided by HMRC.

Platform security: Konfir's platform is hosted on Amazon Web Services (AWS), known for its world-class infrastructure security.

Compliance and Certifications

Fully GDPR compliant

ISO 27001 certified

Registered as an Attribute Service Provider under the UK Government Digital Identity and Attributes Trust Framework

Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.

Still need help? Contact Us Contact Us

Related Articles