We are SOC 2 Type 1 certified, with secure mechanisms in place to ensure the safety of data.
We conduct regular and thorough Security & Awareness training for all employees.
Our application only requires 'read-only' access to your data.
All CryptoTaxCalculator employees are required to pass a thorough background check and complete annual Security and Awareness training.
Our team of developers are highly experienced in working with secure systems, with mechanisms in place to ensure monitoring of systems in order to respond to any issues quickly and efficiently
All new product features undergo rigorous testing in a staging environment prior to release to ensure the security of your account and respective data.
Our team engages in regular penetration testing and vulnerability scanning to identify and rectify any potential risks to security in accordance with SOC 2 best practise.
Formal IT risk assessments are conducted annually (at a minimum) with organization-wide participation and C-level review of assessment outcomes.
We will never ask for your crypto wallets private keys.
Our integrations only require read access to your data.
All API keys are securely stored and encrypted in transit and at rest.
CryptoTaxCalculator enforces a password complexity standard to maximize security for users, and all credentials are stored using a salt + bcrypt hash function.
CryptoTaxCalculator has layers of technical and operational controls such as antivirus, penetration testing and vulnerability scanning to protect all user information.
Our application allows you to delete all imported data (and associated wallet/exchange information) at any time for any reason.
Security Assertion Markup Language (SAML) Single Sign-On (SSO) allows authentication of users without requiring them to enter additional login credentials.
All payments made to CryptoTaxCalculator go through the Stripe platform, which is certified to PCI Service Provider Level 1. To read more about their security policies, you can visit Stripe’s security page.
CryptoTaxCalculator uses Amazon Web Services (AWS) centers for hosting. These are monitored at all times with controls implemented to counteract risk. You can learn more by visiting AWS’s security page.