A Partner You Can Trust

You regularly receive sensitive data from community members, employees, and families. You need a partner who is well-equipped and truly cares to keep that data secure.

A Partner You Can Trust

You regularly receive sensitive data from community members, employees, and families. You need a partner who is well-equipped and truly cares to keep that data secure.

Trusted Security

We care about your institution’s and community members’ data security. That’s why we have detailed security standards that are regularly assessed, reviewed, and tested for education and efficacy.

Application Security and Encryption

We stay current on technology innovations and data security trends, so you can trust our systems are current. Our team is dedicated to maintaining security certifications from organizations like CompTIA, DRI International, ISACA, ISC2, the ITIL Foundation, and the PCI Security Standards Council.

Cybersecurity

Our approach to cybersecurity is proactive. We perform regular scans of our network to make updates and predict potential issues before there’s a problem. Our data network infrastructure protects information, prevents against attacks, and keeps you compliant.

Testing and Threat Assessment

We follow strict, secure coding guidelines throughout the software development lifecycle. Trained developers perform manual/automated coding reviews, vulnerability scans, and penetration tests, such as PCI Pen, network segmentation, red/blue team, and internal, external, and web application testing.

Trusted Compliance

Effectively managing sensitive personal and financial information is important in building community trust. That’s why we have a strong, long-standing commitment to security, compliance, and data protection.

SSAE 18 Audited

The Statement of Standards for Attestation Engagement is an audit standard designed for third-party service organizations. The results are used in audits of many institutions, and they address all aspects of the service organization’s control environment. FACTS is SSAE 18 audited annually.

PCI DSS Level 1

The Payment Card Industry Data Security Standards are set forth to protect cardholder data. All merchants and processors need to have physical, electronic, and procedural controls in place to ensure that cardholder data is stored and handled securely. FACTS is PCI Level 1 compliant.

Compliance Training and Testing

To support the security of our products, all FACTS associates (including the non-IT ones) regularly participate in phishing simulation tests, security awareness training, and professional development related to internal/external security.

Demo Our Suite of Secure Products

Our Commitment to You

Protecting sensitive information is a big task. As your partner, we’ll assume the responsibility of providing responsive and reliable security that protects your institution and community.

Responsive Recovery

In the event of an emergency, our response plans involve clearly defined processes and roles to resolve issues as quickly as possible.

Reliable Infrastructure

Our infrastructure is solid, so you never have to worry. We contract with a Level 4 regional collocation and data center. As an additional precaution, we also have a disaster recovery facility in place.

Ready to Start the Conversation?

We’ll help you take care of the how, so you have more time to focus on your why.