Trust Center

background-image
Start your security review
View & download sensitive information
Ask for information
ControlK

Overview

At FrankieOne, your trust is our top priority. We understand the significance of data security in today's digital landscape and are dedicated to safeguarding your data with the utmost care. Our commitment to security is unwavering, and we employ comprehensive systems and protocols to ensure the protection of the information you entrust to us.

This commitment spans our entire services - KYC, KYB, IDV, AML/CTF, OneSDK, Fraud & Transaction Monitoring, Portal. These robust security measures are designed to safeguard the sensitive data and processes across all our solutions.

Within this Trust Centre, you'll find detailed insights into our data security practices and the robust procedures we've established. We aim to offer transparency about our security measures and to reinforce the confidence you place in FrankieOne.

Compliance

GDPR Logo
GDPR
ISO/IEC 27001:2022 Logo
ISO/IEC 27001:2022
SOC 2 Logo
SOC 2
BIMI Logo
BIMI

Frankie One is reviewed and trusted by

ANZ Bank-company-logoANZ Bank
Commonwealth Bank of Australia-company-logoCommonwealth Bank of Australia
Westpac-company-logoWestpac
Qantas-company-logoQantas
Finder-company-logoFinder
BTC Markets-company-logoBTC Markets
Cointree-company-logoCointree
MYOB-company-logoMYOB
Shopify.com-company-logoShopify.com
Afterpay-company-logoAfterpay
Kraken-company-logoKraken
Binance-company-logoBinance

Documents

Featured Documents

COMPLIANCESOC 2
COMPLIANCEISO/IEC 27001:2022
APP SECURITYApplication Penetration Testing
LEGALCyber Insurance
Knowledge Base (FAQ)
  • Do you use encryption for external/internal information transmissions (i.e., over the network/internet)? What encryption standard do you use?
  • Has your organization experienced any information security incidents or breaches in the past 24 months? If so, what controls were implemented to mitigate risks from these breaches?"
  • Describe your organisation penetration testing approach and frequency? Please provide the latest penetration testing report.
  • Does your organisation hold any certifications? For example, ISO/IEC 27001, Privacy Shield, ISO9001, Cyber Essentials.
  • Describe your organisation information security policies and how often these are reviewed and updated? Please provide copies of your information security policies.
View more

Risk Profile

Data Access LevelRestricted
Impact LevelSevere
Recovery Time Objective2 hours
View more

Policies

Acceptable Use Policy
Asset Management Policy
Data Classification Policy
View more

Reports

Other Reports
Pentest Report
SOC 2 Report

Product Security

Audit Logging
Data Security
Integrations
View more

Data Security

Access Monitoring
Certificates of Destruction
Data Asset Classification
View more

App Security

Responsible Disclosure
Application Penetration Testing
Code Analysis
View more

Legal

SubprocessorsAmazon Web Services (AWS)-company-logoCloudflare-company-logoGoogle-company-logoAtlassian-company-logoHubSpot-company-logo
Customer Audit Rights
Cyber Insurance
View more

Access Control

Access Log Management
Bring Your Own Device (BYOD)
Data Access
View more

AI

AI Security
AI Overview
AI Training Data and Bias
View more

Data Privacy

Cookies
Data Breach Notifications
Data Into System
View more

Infrastructure

Status Monitoring
Security Information and Event Management
Amazon Web Services
View more

Endpoint Security

Anti-Malware
Disk Encryption
Endpoint Detection & Response
View more

Network Security

Bot Detection
Data Loss Prevention
Distributed Denial of Service Protection (Anti-DDoS)
View more

Corporate Security

Asset Management Practices
Email Protection
Employee Training
View more

Incident Response

Incident Response Plan
Designated Response Personnel
Forensic Retainer
View more

Risk Management

Data Access/Impact Levels
Risk Assessments
Supply Chain Risk Management
View more

Asset Management

Asset Classification
Asset Inventories (Hardware/Software)
Asset Tracking
View more

BC/DR

Alternate Processing/Storage Site
Business Continuity Management System (BCMS)
Business Continuity Plan (BCP)
View more

Training

Security Awareness Training
Employee Privacy Training
Phishing Training
View more

Change Management

Change Advisory Board (CAB)
Change Management Program
Changes Notification & Verification
View more

ESG

Anti-Bribery and Corruption
Anti-Modern Slavery
Code of Ethics
View more

Subprocessors

Trust Center Updates

SOC 2 Type II Attestation Achieved

Copy link
Compliance

We’re pleased to share that we have successfully completed our SOC 2 Type II audit. This independent assessment confirms that our controls and processes operated effectively over the audit period, in alignment with the Trust Services Criteria for security, availability, and confidentiality. Please download the latest report from this Trust Center.

Achieving SOC 2 Type II demonstrates our ongoing commitment to protecting customer data and maintaining strong security and compliance practices.

Impact Assessment of critical vulnerability related to React Server Components (CVE-2025-55182 , CVE-2025-66478)

Copy link
Vulnerabilities

We have completed our detailed impact assessment of this vulnerability and found that there is no usage of impacted React Server Components within our environment.
Also, Cloudflare, our WAF provider, has deployed rules preventing the exploitation of this vulnerability - https://blog.cloudflare.com/waf-rules-react-vulnerability/

Welcome to our Customer Trust Center!

Copy link
General

Welcome to our new FrankieOne Trust Center. We take security and privacy seriously. This page provides clear, up-to-date details on our controls, certifications, and policies to support your evaluation with confidence.

If you think you may have discovered a vulnerability, please send us a note.
Report issue
Built onSafeBase by Drata Logo