Security & Privacy

All data stored in Accumula is safe and secure. For us, it’s the only way to do business.

We take precautions — including administrative, technical, and physical measures — to safeguard your personal information against loss, theft, and misuse, as well as against unauthorized access, disclosure, alteration, and destruction.

We follow generally accepted industry standards to protect your information, both during transmission and once we receive it. No method of transmission over the Internet, or method of electronic storage, however, is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

When you enter sensitive information (such as credit card number) on our order form, we encrypt the transmission of that information using secure socket layer technology (SSL) and further tokenize any payment information moving forward in accordance with industry best practices.

Data Transfer and Security

Accumula conforms to industry standard best practices for both data transfer and storage.

All data transfers to and from Accumula are SSL-encrypted by default using the same industry standard security encryption used by online banks. Each interaction is uniquely managed using a regularly updated security key, wherever available from the connected partner platform. Additionally, all data management between servers within the Accumula platform is tightly controlled and limited to only those areas within the platform on AWS (Amazon Web Services). All physical access to Accumula infrastructure is managed by Amazon Web Services and conforms to the highest standards in the industry.

Customer Data Retention

Access to Customer data is limited to Accumula technical teams exclusively. Access is tightly managed and only available to active members of the Accumula team who require access to provide services and support our customers.

Backups of customer data are performed multiple times daily and are securely retained for 30 days.

Upon cancellation of service, Accumula policy is to delete data from the customer account so it is no longer stored.

Incident Management

In the event of a data breach or other security incident, Accumula will notify impacted customers within 72 hours of becoming aware of the incident. Security notifications will attempt to provide relevant details so customer can gauge the exposure and any compliance and reporting obligations they may have under their own data policies.

As per industry standard practices and the Accumula User Agreement, Accumula will indemnify and hold harmless Customer if such data breach is directly caused by Accumula or in such case that Accumula failed to implement reasonable security measures to protect against such a breach.

In the event that damages are sought in connection to an incident, the sum total of any damages levied against Accumula will not exceed to sum total of fees paid for Accumula services.


Contact [email protected] with any security concerns