Security that builds confidence
MerchantLinQ is built on the Microsoft Azure cloud platform to ensure the highest security standards.
LoanStar selected Microsoft for their decades-long experience in enterprise software. This extensive background has enabled them to grow a robust set of security technologies and practices—ensuring the Azure infrastructure is resilient to cyber-attacks, safeguards user access to the Azure environment, and helps keep customer data secure. This is sustained through encrypted communications and proactive threat management and mitigation practices—including regular penetration testing.
Our security principles:
Privacy
In order for financial institutions to leverage products that are deployed on cloud services, they must entrust their most valuable asset—data—to their infrastructure of choice. The institution trusts that its privacy will be protected and that its data will be used only in a way that is consistent with expectations. LoanStar is SOC-2 Type 2 certified to ensure our cloud-based platform meets the highest security and privacy standards and provides our customers with well-founded trust in the platform. This is also why LoanStar chose the Microsoft Azure infrastructure.
For almost 20 years, Microsoft has been a leader in creating online solutions that are specifically designed to protect the privacy of customers. To demonstrate that, Microsoft Cloud implements compliance practices that billions today rely on. The enterprise cloud services are independently validated through certifications and attestations, as well as third-party audits. In-scope services within the Microsoft Cloud meet key international and industry-specific compliance standards, such as ISO/IEC 27001 and ISO/IEC 27018, FedRAMP, and SOC 1 and SOC 2. They also meet regional and country-specific standards and contractual commitments, including the EU Model Clauses, UK G-Cloud, Singapore MTCS, and Australia CCSL (IRAP). In addition, rigorous third-party audits, such as those by the British Standards Institution and Deloitte, validate the adherence of the Microsoft cloud services to the strict requirements these standards mandate.
Transparency
LoanStar chose the Microsoft Cloud infrastructure, to ensure MerchantLinQ users could readily control their customer data, view the data and understand how the data is handled. This is guaranteed through clearly stated and readily available policies and procedures that explain where the customer data is stored, how Microsoft secures it, as well as who can access it and under what circumstances. The infrastructure allows users to view third-party audit reports and certifications, to verify that the security standards are being met.
We believe in providing not just a service, but a trustworthy and transparent environment where users can confidently manage and protect their data. Your privacy is our priority, and LoanStar is committed to upholding the highest standards in data security within the MerchantLinQ platform.
Flexibility
The Microsoft infrastructure provides great flexibility on encryption solutions, privacy options and connectivity through the data center. Following is a few ways Azure provides that:
Managing and controlling identity and user access to your environments, data, and applications. The infrastructure federates user identities to Azure Active Directory and enables multi-factor authentication for more secure sign-ins.
Encrypting communications and operation processes. For data in transit, Azure uses industry-standard transport protocols between user devices and Microsoft datacenters, and within datacenters themselves. For data at rest, Azure offers a wide range of encryption capabilities up to AES-256, giving users the flexibility to choose the solution that best meets their needs.
Securing networks. Azure provides the infrastructure necessary to securely connect virtual machines to one another and to connect on-premises datacenters with Azure VMs. Azure blocks unauthorized traffic to and within Microsoft datacenters, using a variety of technologies. Azure Virtual Network extends users’ on-premises network to the cloud through site-to-site VPN.
Managing threats. To protect against online threats, Azure offers Microsoft Antimalware for cloud services and virtual machines. Microsoft also employs intrusion detection, denial-of-service (DDoS) attack prevention, regular penetration testing, and data analytics and machine learning tools to help mitigate threats to the Azure platform.
Feel confident knowing your customer’s data is secure with MerchantLinQ.
Want to learn more about how LoanStar ensures best security practices?