Security & GDPR
Your privacy, security and trust are an integral part of our service.
Secure accounts
Every ExpenseIn account is secured with a password, with the option to enforce two-step authentication for your organisation.
We follow industry standards, such as encrypting traffic and passing passwords through a one-way cryptographic hash algorithm before storing them to ensure bank level security.
We’re ready when you are
With an uptime that exceeds 99.99%, ExpenseIn is ready anytime that you are. We achieve this by limiting partnerships to premium providers, having robust, tested recovery procedures and redundancy.
Take a look for yourself at http://status.expensein.com
We keep your data safe
Every receipt and record that you entrust to us is yours. We’ll keep it safe, we’ll never share it, and it’s easy for you to retrieve and download anytime you need to access it again.
Our staff are trained in data protection, understanding and following best practices to keep your data safe. This training is both CPD accredited and IIRSM approved.
Your data integrity is our priority
We leverage industry leading providers and the latest in cloud technology to ensure that your data is always available.
Data replication ensures that there’s always a mirror image of your records.
GDPR compliant
At ExpenseIn, we take your data security very seriously, and we are fully committed to ensure that our internal processes, policies and our platform remain GDPR compliant.
Our hosting partner
Our hosting partner Amazon AWS enables us to ensure that your data is processed and stored in the UK to industry-leading standards. And with Amazon’s certifications, including ISO 27001, you can rest assured that your information is secure.
Certified and proven security
ExpenseIn has been awarded Cyber Essentials Plus certification, a scheme backed by the UK Government and the National Cyber Security Centre. In order to achieve certification our systems have been independently evaluated by a certified accreditation body.
Frequently Asked Questions
Our hosting partner Amazon AWS enables us to ensure that your data is processed and stored in the UK to industry leading standards. And with Amazon’s certifications, including ISO 27001, you can rest assured that your information is secure.
Yes, ExpenseIn is fully GDPR compliant. Protecting our customer’s data is of the utmost importance to us and is our number one priority.
ExpenseIn utilises a 3rd party to scan all public endpoints every 14 days. The system is tested against a range of known threats, including all known threats identified by the latest OWASP publications.
We follow industry best practices and use the latest cloud technology to ensure data security, integrity and service uptime.
See our Technical Security Measures for further details.
Yes, ExpenseIn is hosted in the London UK AWS Region across multiple availability zones. Each zone is backed by one or more physical data centres.
We never store payment details. Instead, our carefully chosen partner Opayo and GoCardless store your payment details.
Yes, we take data protection and privacy very seriously. All of our staff receive training in data protection and fully understand your need for privacy. Further details are available in our privacy policy.
ExpenseIn works with a small number of trusted and GDPR-compliant sub-processors to provide the service.
See our list of Sub-Processors for further details.
Our carefully selected partners
Exceptional service, performance and security is in our DNA. That’s why we only partner with industry leaders who have proven track records and meet our own exacting standards.
Amazon AWS, one of the largest managed cloud providers, manage the servers and data centres that power ExpenseIn. And with Amazon’s certifications, including ISO 27001 and PCI Data Security Standard, you don’t just have to take our word for it.
Payments are processed by Opayo and GoCardless. Additionally, we are also PCI DSS certified, so you can rest assured that your payment information is protected.
What our customers say about ExpenseIn
The ExpenseIn App is easy to use and the pricing model works very well for us.
Sian Waddington
Director of OperationsExpenseIn is so easy to navigate and use. They really understand the needs of a busy finance team.
Becky Wells
Finance ManagerWe’re really pleased we made the decision to roll out ExpenseIn at Ascot Racecourse and the system has been widely embraced by our employees.
Chris Collard
Financial ControllerThe ExpenseIn App is easy to use and the pricing model works very well for us.
Sian Waddington
Director of OperationsExpenseIn is so easy to navigate and use. They really understand the needs of a busy finance team.
Becky Wells
Finance ManagerWe’re really pleased we made the decision to roll out ExpenseIn at Ascot Racecourse and the system has been widely embraced by our employees.
Chris Collard
Financial ControllerThe biggest benefits since using ExpenseIn are its ease of use, configuration for back office and the mobile app.
Chris Walkingshaw
HR and Operations DirectorOur employees are happier as they are getting paid quicker.
Mathew Beadle
Financial ControllerThe ExpenseIn App is easy to use and the pricing model works very well for us.
Sian Waddington
Director of OperationsExpenseIn is so easy to navigate and use. They really understand the needs of a busy finance team.
Becky Wells
Finance ManagerWe’re really pleased we made the decision to roll out ExpenseIn at Ascot Racecourse and the system has been widely embraced by our employees.
Chris Collard
Financial ControllerThe biggest benefits since using ExpenseIn are its ease of use, configuration for back office and the mobile app.
Chris Walkingshaw
HR and Operations DirectorOur employees are happier as they are getting paid quicker.
Mathew Beadle
Financial ControllerGet started with ExpenseIn today
Explore our faster, simpler and smarter approach to expense management.