You're trusting us with one of your most important resources — your client data. Here's what we do to keep it safe.
At Hubly, we take the security of your data and client's data very seriously.
Hubly is a process management solution built specifically for financial advisors and their teams. Hubly makes it easy to scale a consistent client experience by streamlining how you collaborate with your team, track progress on important tasks, and manage your client service workflows and processes.
Hubly is not a client facing tool. Our system is built exclusively for use by advisors and the back office professionals that support them, helping increase capacity and stay on top of client tasks.
Hubly has achieved its SOC 2 Type 2 certification for three trust service criteria (Security, Availability and Confidentiality), and is audited annually. Contact email@example.com for Hubly’s latest SOC 2 Type 2 report.
Hubly uses industry-leading US-based Amazon Web Services (AWS) as our service provider and rely on their security, which include 24/7 on-site physical security and camera surveillance, and SOC audits. For additional details regarding AWS security, visit this page.
Amazon's SOC 3 Report is a public report which we can share with you upon request. However, we are bound under Amazon's NDA for the SOC letter and SOC 2 reports. Your firm, broker dealer and auditors can access these confidential reports free of charge by following the steps outlined by AWS here.
All data transmitted between your computer (and your client’s computer) to and from Hubly’s servers is encrypted using industry standard TLS encryption. Our HTTPS implementation is rated 'A' by Qualys Labs, an independent SSL server testing tool.
All communication is done via an AWS API Gateway which provides TLS v1 encryption using the SHA-256 algorithm. In addition all data is encrypted at rest using the industry standard AES-256 encryption algorithm.
All logins are handled using AWS Cognito, which is a fully managed standards-based Identity Service. Amazon Cognito is HIPPA eligible and PCI DSS, SOC, ISO/IEC 27001, ISO/IEC27017, ISO/IEC 27018 and ISO 9001 compliant.
We have a detailed incident response plan in place, with a dedicated incident manager and response team, as well as clearly defined policies and timelines for triaging breaches and other events.
As part of our data management policy, we have strict rules in place over who can see what, and how any personal or privileged information is handled. If you ever want to terminate your Hubly subscription (and we're going to do our best to make sure you won't), your customer data will be deleted within 60 days.
All data transmitted between your computer (and your clients' computers) to and from Hubly’s servers is encrypted using industry-standard TLS encryption. Our HTTPS implementation is rated 'A' by Qualys Labs, an independent SSL server testing tool.
All Hubly data is encrypted at rest using the industry standard AES-256 encryption algorithm. Hubly transmits data via an AWS API Gateway, which provides TLS v1 encryption using the SHA-256 algorithm.