Data is encrypted
from login to logout
Read-only: no one
can move money
Independently
Verified
Total assets
synced to SigFig
No one can see your credentials
(not even SigFig employees).
No one can trade, withdraw funds,
or transfer money — not even you.
TRUSTe & VeriSign verify
our security every day.
Investors have connected $30
billion+ in investments to SigFig.
Common Questions & Disclosures
What is “bank–level” security?
“Bank–level” security means we adhere to the same security encryption standards as your bank. We routinely run security audits to ensure we meet these standards at all times. On top of internal audits, VeriSign and TRUSTe – the internet’s leading online security firms – validate our security.

We also physically protect the servers we store your information on. To access our servers, you would first have to bypass round–the–clock guards, then bypass doors with electronic lock systems. The servers themselves are locked behind protective cases and are monitored 24/7 by surveillance cameras. If someone were able to get past all that security and break into a server, they would then have to crack several layers of authentication and military grade 256–bit encryption to access any data.

(It sort of sounds like a James Bond movie, doesn’t it?)
Am I putting my security at risk by bringing all my accounts into one place?
If someone were to steal your SigFig credentials, they would be incapable of inflicting financial harm. For starters, all sensitive information is hidden so no one (not even you) can see account names or numbers. In addition, SigFig is read—only, so no can move money or make trades.

Also, we don't ask for your full name, address, or other personally identifiable info, so there's little to no risk of identity theft or account fraud.
Why do I have to enter my brokerage credentials to use SigFig?
Your brokerage credentials are needed to form a secure connection between SigFig and your brokerage. This allows us to import your financial information and instantly build your portfolio. This one–time process is completely secure and no one – including our own employees – can see your login credentials.
Can SigFig employees see my credentials or access my brokerage accounts?
No one – not even SigFig employees – can see your account information (like account numbers or login information) or access your brokerage account(s) at any time.
Can I or anyone else trade or move money through SigFig?
The data gathered during this process is “read–only” which means you can look at your holdings – but you can’t touch them – so no one can ever trade or move money.
Do you sell my personal information?
We don’t sell your contact information. Earning and maintaining your trust is our highest priority and there’s no quicker way to lose that trust than by selling your information (as many free sites often do).
I have some more questions about your security, who can I speak to?
If you have more questions about our security, send us an e–mail at support@sigfig.com. We’d be happy to talk with you more about our security practices and protocols.