Security

Pacific Financial Hub LLC • Our commitment to protecting your data

Patent Pending — FinHub Portal™ is a trademark of Pacific Financial Hub LLC

✅ SSL/TLS Encrypted

✅ Two-Factor Authentication

✅ Audit Logging

✅ Role-Based Access

Encryption

All data transmitted between your browser and our servers is encrypted using TLS 1.3 — the highest standard available. Data stored on our servers is encrypted at rest using AES-256 encryption. This means your financial documents, personal information, and business data are protected at all times.

Authentication & Access Control

We enforce strong authentication requirements including:

Secure password hashing using bcrypt
Optional two-factor authentication (2FA) for all accounts
Role-based access control — clients see only their data, staff see assigned work, admins see all
Automatic session timeout after inactivity
Login attempt rate limiting to prevent brute force attacks
CSRF token protection on all forms

Infrastructure Security

Our platform is hosted on enterprise-grade infrastructure with:

Firewall protection and intrusion detection
Regular security patches and updates
Daily automated backups with offsite storage
DDoS protection
Plesk-managed server with security hardening

Data Processing

Our intelligent advisory system processes data locally within our secure infrastructure. We do not send your sensitive financial or personal data to external third-party AI providers. All processing happens within our controlled environment.

Audit Logging

Every login, document access, and administrative action is logged with timestamp, IP address, and user identity. This creates a complete audit trail for compliance and security monitoring. Logs are retained for a minimum of 12 months.

Vulnerability Disclosure

If you discover a security vulnerability, please report it responsibly to our security team before public disclosure. We take all reports seriously and will respond within 48 hours.

Report vulnerabilities to: security@finhubportal.com

Compliance

CCPA compliant data handling
GLBA financial data protections
FCRA compliance for credit-related services
Texas data privacy law compliance

Incident Response

In the event of a security incident, we will notify affected users within 72 hours of confirmed breach, consistent with applicable law. We maintain an incident response plan and conduct regular security reviews.

Last updated: April 15, 2026 • Questions: security@finhubportal.com