Skip to content

Security to protect you and your business

Protecting our customers’ data is a top priority. We undergo rigorous annual security audits and adopt bank-grade security standards based on the National Institute of Standards and Technology (NIST) frameworks to ensure that your personal information and data are kept safe & secure.

Learn more

Data Encryption and Protection

Protecting your sensitive information is paramount to us. We employ state-of-the-art data encryption techniques to fortify the security of your personal data, shielding it from any unauthorized access attempts. We spare no effort in implementing robust measures to safeguard your data against potential threats.

Two-Factor Authentication (2FA)

The digital world is constantly evolving, and with it, the tools & techniques used by cybercriminals. We use 2FA to safeguard sensitive financial information and prevent unauthorized access.

This security feature requires an additional step during the login process to verify identity, ensuring that our customers can only access their account.

Web site and customer account data security

The security of your account data is of utmost importance to us. To ensure that your data is always protected, we constantly monitor, test, and improve our security measures.

We conduct regular and thorough security audits with the help of an external agency, who provides security recommendations and performs regular penetration testing. This proactive approach helps us to maintain the ongoing protection of your valuable data and information.

Security Tips

Lock and keyhole icon

Set a strong, unique password

Strong passwords are long, the more characters a password has the stronger it is. In addition, we encourage the use of passphrases (passwords made up of multiple words). Examples include “It’s time for vacation” or “block-curious-sunny-leaves”. Passphrases are both easy to remember and type. To make it easier to set and use unique passwords, you can use a password manager to help create and securely store your passwords.

Mobile phone icon

Always set a password on your 
mobile devices

It’s crucial to set a password or passcode on a mobile device to prevent unauthorized access and protect personal information from potential cyber threats. This added layer of security becomes particularly crucial in today’s interconnected world, where mobile devices often store a wealth of personal and sensitive data, making them prime targets for cyber attacks or from anyone who tries to access your phone should you ever lose it.

Icon of desktop and mobile devices

Keep your devices up-to-date

Stay ahead of cyber threats: install patches and updates regularly to keep your devices secure. Ignoring updates only increases your susceptibility to attacks. Learn more about keeping your devices up-to-date.

Update password icon

Update your passwords

Regularly updating online passwords is a good security practice by minimising the risk of unauthorized access to your accounts. By changing passwords periodically, you reduce the chances of hackers gaining prolonged access to your accounts through stolen or leaked credentials.

This practice also mitigates the impact of potential data breaches, ensuring that even if your login details are compromised, the window of vulnerability is limited, enhancing overall account security.

Never share password icon

Never share your password or One-Time Code

Your 2FA code is like a key to your account. Never share it with anyone, whether through email, phone, or any other communication.

Verify caller icon

Verify caller identity

Remember, Moula will never ask for sensitive details over the phone if we initiate the call. Always verify the caller’s identity before sharing any information.

Check links icon

Always double-check links and URLs to prevent phishing

Be cautious of email and URL links. Before clicking on any links, ensure they are genuine. If you ever doubt the legitimacy of an email or link, please reach out to our customer support.

Verified Moula URL examples

moula.com.au
application.moula.com.au
partners.moula.com.au

Sample web browser with a valid Moula URL

Phishing alert icon

Beware of phishing

Be cautious of links in emails and text messages. Before clicking on any links, ensure they are genuine. If you ever doubt the legitimacy of an email or link, please reach out to our customer support.

Please notify us immediately if you become aware of any security breach on 1300 88 09 72 or live chat on weekdays between 9am - 5pm AEDT, or via email.

Security Questions & Answers

Moula conduct continuous assessments using industry leading security tool and conduct annual security audits performed by a professional third party assessor.

Yes, Moula use the NIST 800-53 framework to ensure the Confidentiality, Integrity and Availability of data is protected from potential cyber attacks.

NIST 800-53, or the National Institute of Standards and Technology (NIST) Special Publication 800-53, is a set of security and privacy controls and guidelines developed by the U.S. government to help organisations manage and improve their information security programs.

In non-technical terms it’s like a comprehensive playbook for ensuring that our organisation’s sensitive information is well-protected. Think of it as a set of rules and best practices that we follow to make sure our digital assets, like customer data and company information, are secure from cyber threats.

By adhering to the recommendations in NIST 800-53, we are essentially putting in place the necessary safeguards to protect our business and your information. It’s like having a security blueprint that guides us in establishing and maintaining a robust cybersecurity posture.

Implementing NIST 800-53 is not just a technical matter; it’s a strategic move to ensure the trust and confidence of our customers, partners, and stakeholders. Following these guidelines helps us demonstrate to the outside world that we take information security seriously and are committed to safeguarding sensitive data.

The NIST 800-53 framework is our guidebook for building a strong fortress around our digital assets, keeping them safe from potential threats and vulnerabilities. It’s a crucial tool in our efforts to maintain a secure and trustworthy environment for our business operations.

Moula has strict and robust security controls in place to prevent data leaks, however in the case of a potential data leak, we have an Incident Response Plan reviewed and updated annually or when required to limit and recover any loss of data.

Moula staff undergo annual security compliance training including simulated Phishing campaigns conducted by our security team to ensure we stay vigilant in an ever-increasing cyber threat landscape.

Moula have robust security controls in place to detect and quarantine phishing attacks. Staff also are subject to continuous simulated phishing campaigns conducted by our security team.

Our data is backed up on a daily basis with controls in place to recover any potential data loss.

Yes – our database are segregated to Least Privileged access, meaning only those who have a need to access certain information are able to. Monitoring controls are also in place to detect any misuse of information.

Cybersecurity resources

Here are some helpful Australian Government Cyber security news and education resources for Australian small businesses.

Australian Government and Australian Signals Directorate logos

Cyber security user education

Visit site
Australian government Small business cyber security guide

Small business cyber security guide (PDF)

Download PDF
Australian Government cyber security Alerts and Advisories

Alerts and Advisories

Visit site

More helpful resources from Cyber.gov.au

Eligibility

Our eligibility criteria are simple and transparent. We only conduct credit checks if we’re a good fit to help solve your finance needs.

An active ABN or ACN
6+ months in business
$10,000+ in monthly sales
GST registration1

Get a repayment schedule

Close form panel

We’ll send the results to your inbox right now.

Email sent

Your email is on its way!

Something went wrong

Your repayment schedule email was not sent. Please call us on 1300 88 09 72 for assistance.