Welcome to the Salary Finance Information Security page. We have collected a number of resources and documents to help describe how we protect your data and manage our solution while adhering to the highest security standards.
We have separated our Information Security documentation into two sections. The first discusses the Salary Finance platform and the second describes the payroll processes we will be asking your payroll/HR teams to administer.
Salary Finance and Neyber have combined as a single entity (Salary Finance) and this has brought significant improvements to our technology, security and infrastructure.
The Salary Finance platform is a UK cloud-based solution (Amazon Web Services) that enables Salary Finance to deliver financial wellbeing products and services to your employees. We take our information and data security responsibilities very seriously and have created a comprehensive suite of documentation to explain how we manage and protect data.
Here at Salary Finance we always strive to maintain our market-leading position, through the innovative products and great technology that we build and maintain.
This detailed pack outlines the Information Security and Data protection controls in place within our Organisation.
These resources are designed to streamline your review and governance processes and make the implementation of Salary Finance as efficient as possible.
The Salary Finance processes closely align to the processes currently performed by your teams in the administration of the Neyber offering.
The key processes are:
💡 What’s new?
We have upgraded our technology and tools to make employee verification a simple, error-free process for your team, both saving them time and also ensuring your employees have the best experience when accessing Salary Finance.
We have built a tool, affectionately named EVA (or Employee Validation Application) that enables your team to verify employees’ applications at the click of a button. EVA is simple, secure and easy to use.
N.B. - If you have an SSO (SAML) in place via your benefits platform then the EVA validation process is NOT IN SCOPE and can be ignored.
We have upgraded our payroll admin portal so that processing and confirming deductions is simple and sending payment to Salary Finance is straightforward and stress-free.
This video will provides an overview of the validation process from your payroll/HR team’s perspective.
N.B. - If you have an SSO (SAML) in place via your benefits platform then the EVA validation process is NOT IN SCOPE and can be ignored.
We have created technical documentation to explain how EVA protects data using encryption (AES - 256) and hashing (SHA-256) algorithms as well as the data flows between the EVA application and the Salary Finance platform.
📥 Using Anonymised Data for Validation
Here is a detailed user handbook which describes the end-to-end validation process.
Please review the collateral and confirm that your governance requirements are satisfied by completing this short form:
N.B. - If you have an SSO (SAML) in place via your benefits platform then the EVA validation process is NOT IN SCOPE and can be ignored.
Our Employee Validation Application (EVA) is a simple application that allows your team to easily validate applications for Salary Finance products and services. EVA automates much of a previously manual process, ensuring it is quick, easy to administer and requires only a few minutes effort from your team.
It encrypts and hashes a payroll report using AES-256 and SHA-256 within your IT infrastructure before uploading the encrypted values and hashes to the Salary Finance platform. This ensures Salary Finance only ever receives encrypted information, protecting your data throughout the process.
No, all you need to do download EVA from our website and extract the contents of the folder to the user's computer. There are no changes required to the software on the user's computer. An install-able version can be provided upon request if your IT teams require this. Please note, you will not be able to sign into EVA until user profiles are set up during implementation.
As part of the implementation process, your payroll/HR team will be provided with contact details for our client operations team who will be your first point of contact for any service related issues once live with Salary Finance. To ensure any issues can be managed and resolved Salary Finance operate an in-house support team to maintain the platform.
Salary Finance’s platform has been designed in line with the ICO principle of privacy by design and to comply with all GDPR Rights extended under the Data Protection Act 2018. Please see the Information Security Pack (above) for in depth description of the stringent controls in place.
Access to the Employee Validation Application (EVA) and HR portal is controlled by Salary Finance and restricted to approved user credentials provided by the employer during the implementation process/BAU process.
No, all data in the validation process is encrypted and hashed before being transmitted to the Salary Finance platform. Please see the data flow documentation above which contains the encryption process as well as the note regarding data anonymisation.
Salary Finance Limited and Salary Finance Loans Limited are authorised and regulated by the Financial Conduct Authority (firm reference numbers: 758053 and 734585). Salary Finance Limited is registered as a small payment institution money remittance firm (firm reference number: 788485).
For loan products, depending on the employer, Salary Finance Limited acts either as lender, or credit broker exclusively for associated company Salary Finance Loans Limited.
The “Advance” product is not a regulated lending product.
Salary Finance Limited and Salary Finance Loans Limited are registered in England & Wales (company numbers: 09677777 and 07643748) at Scale Space, 58 Wood Lane, London, W12 7RZ. Data Protection Registrations: ZA152606 and ZA099501.