Your Security,
Our Priority

Protect your business from cyberattacks with our advanced security features
Scale your business with confidence knowing that your data is safe and secure
We offer a wide range of security features to meet the needs of businesses of all sizes
Our security team is available 24/7 to help you protect your business from cyberattacks
SOC 2 Compliance
A Commitment to Security and Safety
Robust Encryption
Keeping Your Data Safe
Global Security and Compliance

At Zamp, we understand the importance of security when it comes to handling financial data. We take our responsibility to protect your data very seriously and have implemented a number of security measures to ensure that your financial information is safe. Our security perimeter is air-tight, meaning that it is very difficult for unauthorized individuals to access your data. We also have a team of security experts who are constantly monitoring our systems for any potential threats.

In addition to our security measures, we also take a proactive approach to data protection. We regularly review our security policies and procedures to make sure that they are up-to-date and effective. We also work closely with our customers to ensure that they are aware of the latest security threats and best practices. We understand that you need to be able to focus on building your business, without having to worry about the security of your financial data. That's why we take care of it for you.

Certification and Compliance
We are in line with SOC2 and in the process of getting certified.
Encryption

Data-in-transit: All our communications at transit external or internal are done via secure and encrypted channels.

Data-at-rest: We use the Advanced Encryption Standard (AES) algorithm with a key size of 256 bits and with a unique and proper encryption key rotation policy for each customer.

Data Privacy

Your data is secure on our platform. All the data you’ve uploaded can only be accessed only by you.
At our network layer, we use Firewall to protect your data from all possible threats. In addition, we have other solutions to detect Virus and Malware on the host systems. These include IDS (Intrusion Detection System) and IPS (Intrusion Prevention System). All new vendors, assets and activities pertaining to processing financial data are subject to a review of privacy, security and compliance.

Software Application Security
We follow left shift development practices, which means that we rigorously test our platform for security measures throughout the development process. By default, we use time-based authentication and a dual layer of security with multi-factor authentication (MFA) to ensure that your funds are always safe. We also collaborate with App Secure to ensure a strong application security perimeter. Finally, we perform detailed vendor risk assessments (TRAs) of all of our vendors to ensure that you are safe.
Security Issues a Proactive Priority
At Zamp, we have a proactive security approach wherein, we are constantly committed to secure our perimeter. We perform regular audits on the entirety of our platform and ensure that any security lapses are prioritized with immediate effect. In addition to that, we have security quality check gates in our deployment pipeline which enables us to be ahead of the curve.
Incident Response
We have incident response policies and procedures to address service availability, integrity, security, privacy and confidentiality issues.
Data Retention and Versioning
Zamp takes data protection seriously. All data, including databases, storage buckets, logs, and message queues, are versioned and retained. In the event of data loss, we have hourly backups that we can use to restore the data immediately. All data suites are monitored and backed up constantly. All backup jobs have monitoring in place to ensure that they are running correctly. Finally, if a customer requests to have their data removed from our platform, we remove it immediately.
Internal Policies and Education
We invest in continuous security training for our employees, so they can identify and mitigate threats like social engineering, phishing scams, and hackers. Our engineering and product teams, who have access to customer data, are subject to criminal history and credit background checks. All employees sign a Privacy Safeguard Agreement, which outlines their responsibilities in protecting customer data.
Responsible Disclosure

We encourage ethical hackers to report any security vulnerabilities they find in our systems to us through our responsible disclosure policy.
Our policy can be found here. Ethical hackers who report vulnerabilities to us in accordance with our policy will be acknowledged and rewarded.
We also welcome ethical hackers to collaborate with us to help us strengthen our security perimeter.

Products
TreasuryBankingGlobal Payments
Solutions
StartupsWeb3VC Funds
Resources
LegalSecurityPrivacy PolicyTerms & Conditions
Company
CareersInvestorsBlogFAQsContact Us

*Interest rates are subject to market conditions and returns may vary based on these interest rates. Returns of up to 5.48% as of July 14th, 2023. More information can be found at the Treasury Department's website. The material presented is for informational purposes only and should not be construed as investment advice. It is not a recommendation of, or an offer to sell or solicitation of an offer to buy, any particular security, strategy or investment product. Investing in securities involves risks, including the potential loss of money, and past performance does not guarantee future results. Historical returns, expected returns, and probability projections are provided for informational and illustrative purposes, and may not reflect actual future performance. Product images shown are for informational and illustrative purposes only, and may not reflect how they will actually appear within the product. Nothing on this document should be construed as personalized investment advice, which can only be provided in one-on-one communications. The materials and services presented in this document are directed to Customers and Potential Customers who are business entities in the United States of America. Zamp Finance does not solicit retail or foreign investors.

Advisory services offered through Varni Labs Inc. ("Zamp Finance"), an SEC-registered investment advisor. Subadvisory services are offered through Atomic Invest LLC ("Atomic Invest"), an SEC-registered investment advisor, member SIPC. Atomic Invest was formerly known as Helium Advisors LLC. Brokerage services provided by BNY Mellon Pershing, member SIPC, through a clearing and custody relationship with Atomic Invest. Varni Labs Inc. ("Zamp Finance") has a subadvisory relationship with Atomic Invest to manage and execute investments on behalf of its customers. Technology services may be provided by Atomicvest. Pershing LLC and Varni Labs Inc are separate, unaffiliated companies, each responsible for their own policies and procedures. Trademarks belong to their respective owners. For further information about Zamp, you can view us on the SEC website. Brokerage custody is provided by Pershing LLC, member FINRA, NYSE, SIPC, a BNY Mellon company. Sources: FINRA, SIPC, BNY Mellon Pershing, TreasuryDirect and others.

In Singapore, the payment services (including the issuance of the Zamp Visa Card are provided by NIUM PTE. LTD., a company registered in Singapore (UEN 201422465R) and a major payment institution licensed by the Monetary Authority of Singapore. Varni Labs Pte. Ltd. is not licensed to provide any payment services in Singapore (or exempt from such licensing). The payment services in the US is powered by NIUM Inc. and the program is sponsored by CFSB to which NIUM is a service provider. Varni Tech Inc is not licensed, nor exempt to provide any payment services in the US.


1 Accounts are likely to be opened in 24 hours or less if documents are in place. In exceptional cases, they may take longer to open.
Pershing LLC and Varni Labs Inc are separate, unaffiliated companies, each responsible for their own policies and procedures. Trademarks belong to their respective owners