Documentation, files, and reports containing general internal or confidential information may be shared via systems and tools such as email and Google Drive.
In any instance when more sensitive information, including customer data, including non-public personal information (NPPI) or personal identifiable information (PII) must be shared, this should be done in more secure methods such as SFTP using encryption.This standard does not apply to Fedwire file transfer. Fedwire is a real-time gross settlement system of central bank money used by Federal Reserve (Fed) banks to transfer funds electronically between member institutions. Fedwire file transfer standards are administered and managed via Fedwire. Synctera’s Secure File Delivery architecture provides reliable, secure daily (nightly) delivery of files of interest to our Sponsor Banks and FinTech partners.
Security, accuracy and privacy are fundamental in Synctera’s product design. Synctera achieves this through the following ways:File Encryption
Synctera PGP-encrypts all files created through this process. Synctera uses our partner’s public key for this part of the process, guaranteeing that only the holders of the private key can decrypt the file.
Synctera places the created files in our secure file transfer protocol (SFTP) folder, for partner access and download. This folder can be accessed only by holders of the requisite credentials.
Taken together, these two measures provide a two-step assurance that the data is accessible only by those people who are duly-authorized by both Synctera and theirs (SFTP credentials, SFTP folder access & PGP key).Employees of Synctera cannot view the contents of these files since Synctera does not possess access to the partner’s private key.All PII data is tokenized and placed in-vault at rest. Synctera de-tokenizes this information in-memory during the file delivery process.
