security

We’re committed to maintaining the highest standards to protect our customers.

We understand the sensitivity and risk of the financial information we strive to keep secure. We just don’t help our customers with vendor assessments and risk management – we practice what we preach. Trace invests in security technologies, operations, and external audits to ensure our systems and processes are their best. 



Building and keeping customer trust is our number one priority.

Enterprise-Ready Security & Compliance

SOC2 Certified

Trace is SOC2 Type 1 compliant. Trace’s service commitments and system requirements were achieved based on the trust services criteria relevant to security and confidentiality set forth in TSP 100, 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy.

AWS

Trace uses Amazon Web Services (AWS) for the hosting of staging and production environments. AWS data centers are monitored by 24×7 security, biometric scanning, video surveillance, and are SOC 1, SOC 2, and SOC 3 certified.

SSO

Single Sign-on (SSO) allows you to authenticate users in your own systems without requiring them to enter additional login credentials. Authenticate through Okta, Google, Microsoft, and more.

Ongoing Commitment to Security

Data Permissions & Access
We enable granular permission levels within the app to be set for your teammates. Permissions can be set to include app settings, integrations, user data, and financial data.
Vulnerability Scanning
Trace utilizes a variety of manual and automatic data security and vulnerability checks throughout the software development lifecycle.
Incident Response
Trace has policies and procedures for handling security events which includes escalation paths, rapid resolution, and post-mortems.
Training
All employees complete a security training program to understand risks, procedures, and employ best practices when handling customer data.
Policies
Our team is responsible for reviewing, updating, testing, and maintaining our security, privacy, and data protection policies. All employees are informed of our policies.

Security questions or issues?

Our team is here to address any questions or issues you might have.

Contact Our Security TeamRead our Privacy Policy

Resources