We take information security seriously
Payroll information is both personal and powerful — that’s why Pinwheel’s information security program is designed to meet or exceed industry standards with many different controls to keep your personal information safe. We are the only API provider in the industry with a Chief Information Security Officer (CISO).
Encryption safeguards your data
When you use Pinwheel to connect a payroll account to an app, we help keep your data safe and private with bank-level encryption protocols like the Advanced Encryption Standard (AES 256) and Transport Layer Security (TLS).
24/7 monitoring protects your information
Our systems are monitored 24/7 to respond to and resolve any potential issues, so you can be confident your private information is secure.
Industry-leading certifications demonstrate our commitment to security
We insist on independent and impartial assessments as a means to prove our security credentials. Pinwheel has earned SOC 2 Type 2 and ISO 27001 certifications. We are also PCI DSS Level 2 compliant.
Our products are built on secure cloud infrastructure
We use modern cloud technologies to host the Pinwheel API. By using cloud infrastructure, we’re able to leverage advanced security mechanisms to better protect data.
Independent security testing helps us continuously improve
Pinwheel’s API and security controls are regularly audited by industry-leading security testers.
Proactive measures help secure our software supply chain
We automatically analyze all open-source packages and their dependencies for supply chain risk. This enables our team to act and defend our software supply chain from malicious actors.