Security
Securely Serving Our Clients
When you choose Grant Street Group, you gain experience, expertise, and reliability. We recognize our vital role in safeguarding constituent data. We are committed to providing top-tier security that exceeds industry standards to ensure the safety of that information.
State-of-the-art security infrastructure
It’s not enough to say “we’re secure”. Each year, we conduct multiple independent audits to thoroughly assess our data security. These audits examine hundreds of check points concerning secure data storage, encryption methodology, system and network security, as well as our security policies and procedures. Our security infrastructure features multiple layers to protect your data.
Trust and transparency
For more than 20 years, we have earned our clients’ trust by responsibly safeguarding their most valuable data assets. We are committed to developing policies and practices that prioritize trust, ethics, transparency, and accountability while ensuring compliance with national data privacy regulations.
Security principles
Our IT security management system is designed to safeguard data and keep business operations running smoothly. It includes policies, practices, controls, employee training, and incident reporting to minimize the risk of data loss or misuse. The program covers a wide range of security risks–from technology failures to human error and natural disasters.
Compliance and accreditation
Since 2010, Grant Street has maintained a PCI Level 1 certification – the highest level available. With PCI-DSS version 4.0 certification, we meet the highest standards for securely handling payment card information. This critical compliance framework helps protect customer credit card data from fraud and misuse. By adhering to PCI-DSS guidelines, we maintain strict security protocols for payment data, providing peace of mind to customers and ensuring transactions are secure and reliable.
Our SSAE18 System and Organization Controls (SOC) compliance demonstrates our commitment to transparency and trust. SOC1 focuses on controls over financial reporting, ensuring we have robust processes in place to manage sensitive financial data securely. SOC2 addresses key principles like security, availability, confidentiality, and privacy, which helps us uphold rigorous standards for handling customer data safely. These certifications affirm our system designs protect your information from unauthorized access.
As a NACHA-compliant organization, we meet stringent standards for handling Automated Clearing House (ACH transactions. NACHA compliance ensures we follow secure practices for managing electronic payments, including safeguards against fraud and data breaches. This compliance strengthens our financial operations, giving our clients and partners confidence that we securely and efficiently process electronic transactions.
Our solutions are built based on NIST standards – providing a cybersecurity framework to help manage, and reduce cybersecurity risk. We have a comprehensive intrusion detection and response strategy to safeguard the most confidential data we manage.
Since 2010, Grant Street has maintained a PCI Level 1 certification – the highest level available. With PCI-DSS version 4.0 certification, we meet the highest standards for securely handling payment card information. This critical compliance framework helps protect customer credit card data from fraud and misuse. By adhering to PCI-DSS guidelines, we maintain strict security protocols for payment data, providing peace of mind to customers and ensuring transactions are secure and reliable.
Our SSAE18 System and Organization Controls (SOC) compliance demonstrates our commitment to transparency and trust. SOC1 focuses on controls over financial reporting, ensuring we have robust processes in place to manage sensitive financial data securely. SOC2 addresses key principles like security, availability, confidentiality, and privacy, which helps us uphold rigorous standards for handling customer data safely. These certifications affirm our system designs protect your information from unauthorized access.
As a NACHA-compliant organization, we meet stringent standards for handling Automated Clearing House (ACH transactions). NACHA compliance ensures we follow secure practices for managing electronic payments, including safeguards against fraud and data breaches. This compliance strengthens our financial operations, giving our clients and partners confidence that we securely and efficiently process electronic transactions.
Our solutions are built based on NIST standards – providing a cybersecurity framework to help manage, and reduce cybersecurity risk. We have a comprehensive intrusion detection and response strategy to safeguard the most confidential data we manage.