Credas is designed with high security standards to protect user data and ensure a safe experience. Credas complies with strict industry standards and regulations, such as GDPR, to secure all personal information. Credas is also certified to the UK Government's Cyber Essentials Plus standards and holds the ISO 27001 certification, which is a globally recognised standard for information security management. No information is saved within the App or on your device. Credas systems use enhanced encryption and secure data storage methods to safeguard sensitive data, and regularly update and audit systems.
Credas is also certified against the UK Government's Digital Identity and Attributes Trust Framework, which is independently verified and reviewed annually.
As the data processor, the length of time your data is held depends on the Law Firm who issued your check requirements. Please contact the Law Firm who issued you your Credas check to confirm the data retention period. Credas' full privacy notice is available on our website here, which contains further information on how your data is stored and processed.
Have you been sent a source of funds questionnaire and use open banking?
Open Banking is a secure way for you to share certain banking information without having to print/post/email emails which can be frustrating and time-consuming. Open Banking is a government-backed technology that is used widely across the UK by valid banks and businesses. However, the choice is in your hands; there is an option to add six months' worth of bank statements instead of connecting to your bank via Open Banking.
Open Banking is regulated, ensuring that providers utilising it must comply with strict data security rules. Providers must be authorised or registered with the Financial Conduct Authority (FCA) and adhere to the Payment Services Regulations 2017. These regulations impose rigorous requirements for data sharing, secure communication methods, and customer identification. The Open Banking provider used is Yapily.