Security to protect you and your business
Protecting our customers’ data is a top priority. We undergo rigorous annual security audits and adopt bank-grade security standards based on the National Institute of Standards and Technology (NIST) frameworks to ensure that your personal information and data are kept safe & secure.
Data Encryption and Protection
Protecting your sensitive information is paramount to us. We employ state-of-the-art data encryption techniques to fortify the security of your personal data, shielding it from any unauthorized access attempts. We spare no effort in implementing robust measures to safeguard your data against potential threats.
Two-Factor Authentication (2FA)
The digital world is constantly evolving, and with it, the tools & techniques used by cybercriminals. We use 2FA to safeguard sensitive financial information and prevent unauthorized access.
This security feature requires an additional step during the login process to verify identity, ensuring that our customers can only access their account.
Web site and customer account data security
The security of your account data is of utmost importance to us. To ensure that your data is always protected, we constantly monitor, test, and improve our security measures.
We conduct regular and thorough security audits with the help of an external agency, who provides security recommendations and performs regular penetration testing. This proactive approach helps us to maintain the ongoing protection of your valuable data and information.
Security Tips
Please notify us immediately if you become aware of any security breach on 1300 88 09 72 or live chat on weekdays between 9am - 5pm AEDT, or via email.
Security Questions & Answers
Moula conduct continuous assessments using industry leading security tool and conduct annual security audits performed by a professional third party assessor.
Yes, Moula use the NIST 800-53 framework to ensure the Confidentiality, Integrity and Availability of data is protected from potential cyber attacks.
NIST 800-53, or the National Institute of Standards and Technology (NIST) Special Publication 800-53, is a set of security and privacy controls and guidelines developed by the U.S. government to help organisations manage and improve their information security programs.
In non-technical terms it’s like a comprehensive playbook for ensuring that our organisation’s sensitive information is well-protected. Think of it as a set of rules and best practices that we follow to make sure our digital assets, like customer data and company information, are secure from cyber threats.
By adhering to the recommendations in NIST 800-53, we are essentially putting in place the necessary safeguards to protect our business and your information. It’s like having a security blueprint that guides us in establishing and maintaining a robust cybersecurity posture.
Implementing NIST 800-53 is not just a technical matter; it’s a strategic move to ensure the trust and confidence of our customers, partners, and stakeholders. Following these guidelines helps us demonstrate to the outside world that we take information security seriously and are committed to safeguarding sensitive data.
The NIST 800-53 framework is our guidebook for building a strong fortress around our digital assets, keeping them safe from potential threats and vulnerabilities. It’s a crucial tool in our efforts to maintain a secure and trustworthy environment for our business operations.
Moula has strict and robust security controls in place to prevent data leaks, however in the case of a potential data leak, we have an Incident Response Plan reviewed and updated annually or when required to limit and recover any loss of data.
Moula staff undergo annual security compliance training including simulated Phishing campaigns conducted by our security team to ensure we stay vigilant in an ever-increasing cyber threat landscape.
Moula have robust security controls in place to detect and quarantine phishing attacks. Staff also are subject to continuous simulated phishing campaigns conducted by our security team.
Our data is backed up on a daily basis with controls in place to recover any potential data loss.
Yes – our database are segregated to Least Privileged access, meaning only those who have a need to access certain information are able to. Monitoring controls are also in place to detect any misuse of information.
Eligibility
Our eligibility criteria are simple and transparent. We only conduct credit checks if we’re a good fit to help solve your finance needs.
Need help? Chat to a specialist