Skip to main content
  • Support topics
  • Soldo web app login
  • Soldo.com
    • Top
    Expand article

    How does Soldo ensure data protection and security?

    Product Team
    • Updated

    We pay the utmost attention to the protection of privacy: your personal data will never be shared with any external company, except for legal obligations and contract execution. Financial data will never be shared. Our privacy policies can be found here.

    We take security seriously. We use a ‘security by design’ approach, following international standards, security best practices, and continuously work to ensure our platform remains secure. To maintain a high degree of protection, we recognise the importance of being continuously audited according to the most rigorous standards available. Today, Soldo is compliant with:

    • PCI DSS Level 1. The Payment Card Industry Data Security Standard, or PCI DSS for short, is a data security standard developed by the principal payment card networks (MasterCard, Visa, American Express, Discover, JCB) to ensure the security of cardholder data and of the network and systems that host it. Soldo Software Ltd., which provides the group’s software services to all customers, has been annually accredited as a Level 1 Service Provider by the PCI Council, complying with the highest data security standards, since 2017.
    • ISO/IEC 27001. This is the international standard for managing information security, which sets out the specifications for an Information Security Management System (ISMS). Adhering to the standard implies being aligned with globally recognised information security best practices in terms of people, processes and technology. Obtaining a certification requires an audit by an external assessor. Providing proof of regular penetration testing and associated procedures is a pre-condition for the successful completion of the audit.
    • ISO/IEC 9001. Soldo’s ISO/IEC 27001 annual certifications since 2019 demonstrate that all of the companies belonging to the group have been committed to implementing and maintaining an Information Security Management System that complies with the highest international standard. This standard is based on a number of quality management principles including a strong customer focus, the motivation and implication of top management, the process approach and continual improvement.
    • Cyber Essentials Plus. Cyber Essentials is a UK government-backed and industry-supported scheme that helps businesses protect themselves against common online threats. Soldo Software Ltd. and Soldo Financial Services Ltd. have both obtained the Cyber Essentials Plus Certification, which is the highest level of certification offered under the scheme and involves an audit by an external assessor carrying out vulnerability tests.
    • HM Government G-Cloud Supplier. Soldo is part of the G-Cloud framework, the UK government’s supplier agreement for cloud computing services for the public sector. The group was part of the G-Cloud 12 framework and has also been accepted for the G-Cloud 13 framework in 2022.

    From a platform perspective, in order to protect data and provide security, we employ:

    • 3D Secure. Advance 3D Secure (3DS) is a supplementary authentication measure that safeguards online transactions for enhanced fraud protection.
    • Strong Customer Authentication. We employ Secure Customer Authentication (SCA) for multi-factor authentication, increasing the security of electronic payments.
    • Expenditure filter and lock. Our platform provides enhanced protection against unauthorised spending by defining who spends what where and locking cards if misplaced.
    • Continuous security assessments.  We test our products with more than 10 security assessments throughout the year. This improves security in a continuous, never-ending process. We also work with skilled security researchers worldwide to identify and eradicate potential vulnerabilities.

    Related articles

    Soldo® 2025 All rights reserved
    The website in all languages and for all markets is provided by Soldo Software Ltd., a company incorporated in the UK with company number 09233754 and VAT: GB204213566, whose registered office is 119 Marylebone Road, London, NW15PU, United Kingdom. All communications related to the website shall be sent to the registered office.

    The software services provided to customers resident in or with registered office in an EEA country or in the UK are provided by Soldo Software Ltd a company incorporated in the UK with company number 09233754 and VAT: GB204213566, whose registered office is 119 Marylebone Road, London, NW15PU, United Kingdom. Soldo Software Ltd (data protection number: ZA 092035) complies with all applicable data protection and privacy legislation in force from time to time in the UK and the EU including the General Data Protection Regulation ((EU) 2016/679) and the Data Protection Act 2018. All the communications related to the software and related services shall be sent to the registered office. Soldo Software Ltd., 119 Marylebone Road, London, NW15PU, United Kingdom.

    The software services provided to customers resident in or with registered office in Italy are provided by Soldo Italia S.r.l. , a company incorporated in Italy with company number 11864540965 at the Registry of companies of Milano, Monza, Brianza, Lodi, VAT: IT11864540965, and registered office at Via degli Olivetani 10/12, 20123 Milano (Italy). Soldo Italia Srl complies with all applicable data protection and privacy legislation in force from time to time in Italy including the General Data Protection Regulation ((EU) 2016/679). All communications related to the software and related services shall be sent to the registered office Soldo Italia Srl, Via degli Olivetani 10/12, 20123 Milano (Italy).

    The financial services provided to customers resident in or with registered office in an EEA country are provided by Soldo Financial Services Ireland DAC, a company incorporated in Ireland with company number 610705, and registered office at 33 Sir John Rogerson’s Quay, Dublin 2, Ireland.  Soldo Financial Services Ireland DAC is regulated by the Central Bank of Ireland. Mastercard is a registered trademark, and the circles design is a trademark of Mastercard International Incorporated. The card is issued by Soldo Financial Services Ireland DAC pursuant to a licence issued by Mastercard International Inc. Soldo Financial Services Ireland DAC complies with all applicable data protection and privacy legislation in force from time to time in Ireland, including the EU General Data Protection Regulation (EU 2016/679) and the Data Protection Acts 1988 - 2018. All communications related to financial services provided by Soldo Financial Services Ireland DAC shall be sent to Soldo Financial Services Ireland DAC, 33 Sir John Rogerson’s Quay, Dublin 2, Ireland.

    The financial services provided to customers resident in or with registered office in the UK are provided by Soldo Financial Services Ltd., a company incorporated in the UK with company number 09495650, whose registered office is 119 Marylebone Road, London, NW15PU, United Kingdom, authorised as an Electronic Money Institution by the Financial Conduct Authority (firm registration number 900459). Mastercard is a registered trademark, and the circles design is a trademark of Mastercard International Incorporated. The card is issued by Soldo Financial Services Ltd pursuant to a licence issued by Mastercard International Inc. Soldo Financial Services Ltd. (data protection number: ZA147304) complies with all applicable data protection and privacy legislation in force from time to time in the UK and the EU including the General Data Protection Regulation ((EU) 2016/679) and the Data Protection Act 2018. All communications related to financial services provided by Soldo Financial Services Ltd shall be sent to Soldo Financial Services Ltd., 119 Marylebone Road, London, NW15PU, United Kingdom.