SECURITY
What is Open Banking?
Open Banking is a way of seeing all your accounts together in one place, wherever you bank.
It allows you to share information safely with third party apps and websites offering services such as:
Sharing your account information
Comparing prices to help you shop around
Budgeting tools
Making payments
Helping you to manage your money
Setting up automated Variable Recurring Payments
How does Open Banking work in ONEFi?
Use Open Banking
Open Banking works by enabling financial institutions to share account information through APIs (application programming interfaces). This means you can safely allow access to your data without needing to share your log-on details.
To access your account for information sharing, our app will ask you for your consent and you’ll be securely redirected to the accounts' authentication process. This will be similar to the way you log on to online banking.
If you’re having trouble authenticating, make sure you follow the on-screen instructions on how to generate the security code.
Once authenticated, all the account information and transaction records will be shown in ONEFi app.
Customer Data
Open APIs
ONEFi App
Sharing users' Online Banking details with authorised third parties
This is another way for third parties to access your accounts. We are using Plaid, Basip and Finverse, Fintech companies that deliver reliable and easy integration to thousands of financial institutions' APIs. Unlike with Open Banking, you may need to share your log-on details with the service provider to allow them to access your accounts.
They may access your accounts by logging on using your online banking security credentials. They’ll need to request this information from you each time, which they’ll share with us.
They’re only legally permitted to access screens and information for accounts that you’ve given consent to. If you’re concerned about the data you’ve shared and feel it may have been used incorrectly, get in touch with us!
Safety and Security Initiatives
Bank Level Security Level - AES-256 Encryption
Our cyber-security is built on the standard bank-level encryption - 256-bit AES, or advanced encryption standard. This is the most professional-grade security systems that use a similar encryption standard to protect your data from being intercepted by third parties.
We use bank-level security to make sure that your sensitive personal and financial information is fully encrypted and securely stored.
Is ONEFi regulated by HKMA?
We are not regulated by HKMA as we are not one of the banks. Your credentials are encrypted the same as bank security level, and it is stored on AWS with its credentials manager. We are now in the process of applying ISO27001 to ensure security as well. All users' information is anonymous and there is no KYC requirement.
Your security is our main priority
Your money security is our priority concern. Therefore, your wealth is unmovable in the app. We are not able to access your bank account since users' credentials will only be stored in the users' devices.