Trust Center

Start your security review
View & download sensitive information
Search items
ControlK

Overview

Airwallex is committed to upholding a strong security presence as well as complying with legal and regulatory requirements. Information Security remains at the heart of everything we do and is embedded within the Airwallex culture.

Compliance

GDPR Logo
GDPR
PCI DSS Logo
PCI DSS
SOC 1 Logo
SOC 1
SOC 2 Logo
SOC 2
Visa Service Provider Logo
Visa Service Provider
CSA STAR Logo
CSA STAR
ISO 27001 Logo
ISO 27001
Start your security review
View & download sensitive information
PCI-DSS Level 1 AOC
Pentest Report
SOC 1 Report
SOC 2 Report
PCI DSS
CAIQ
Cyber Insurance

Product Security

Audit Logging
Data Security
Integrations
View more

Reports

PCI-DSS Level 1 AOC
Pentest Report
SOC 1 Report
View more

Data Security

Access Monitoring
Backups Enabled
Data Erasure
View more

App Security

Responsible Disclosure
Code Analysis
Software Development Lifecycle
View more

Access Control

Data Access
Logging
Password Security

Infrastructure

Anti-DDoS
BC/DR
Data Center
View more

Endpoint Security

Disk Encryption
Endpoint Detection & Response
Mobile Device Management
View more

Network Security

Data Loss Prevention
Firewall
IDS/IPS
View more

Corporate Security

Email Protection
Employee Training
HR Security
View more

Policies

Acceptable Use Policy
Access Management Policy
Anti-Malicious Software Policy
View more

Security Grades

Qualys SSL Labs
airwallex.com
A

Trust Center Updates

Cyber Security Insurance

GeneralCopy link

We have uploaded our Cyber Security Insurance Certificate as an optional download. The current Insurance Certificate is valid until 24-July-2024.

Published at N/A

Airwallex Bug Bounty Program

GeneralCopy link

Airwallex is committed to building a strong relationship with the information security community. In order to reward the best external contributions that help us keep our users safe, we maintain a Bug Bounty Program for Airwallex owned web properties. Starting from 13/07/2021 the Airwallex Bug Bounty Program is invite only. Issues submitted to bugbounty@airwallex.com will be handled based on priority.

Services in scope

Any Airwallex owned web service that handles reasonably sensitive user data is intended to be in scope. This includes virtually all the content in the *.airwallex.com domain.

Qualifying vulnerabilities

Any design or implementation issue that substantially affects the confidentiality or integrity of user data is likely to be in scope for the program. The program is limited to technical vulnerabilities in Airwallex owned / used web applications. Please do not attempt to carry out DoS or DDoS attacks, social engineering, spamming or do other similarly questionable things.

For more information please visit Airwallex Bug Bounty Program

Published at N/A

If you think you may have discovered a vulnerability, please send us a note.

Powered bySafeBase Logo