Security

sciopay Ltd is authorised by the Financial Conduct Authority as an Authorised Payment Institution (API). Firm Reference Number: 927951.

​We are certified under the UK government-backed Cyber Essentials security scheme designed to protect against the most common and damaging cyber attacks.

We are commited to providing the highest security standards, ensuring that our systems, data, and client interactions are protected from threats.

All confidential information is encrypted both at rest and in transit. We use strong, industry-standard encryption protocols to protect data stored on our systems and ensure that all network traffic is securely encrypted during transmission.

Our approach to encryption and key management follows recognized best practices, including secure key storage and regular reviews to maintain compliance with current security standards.

The Sciopay platform undergoes regular independent penetration testing to identify and mitigate vulnerabilities, including threats such as code injection, cross-site scripting (XSS), and other common attack methods.

These tests are an essential part in how we protect the security of our systems and ensure the safety of our clients’ data and transactions.

Our service operates on a fully cloud-native infrastructure, using trusted providers including Amazon Web Services (AWS) and Microsoft Azure. Both AWS and Azure hold a wide range of global compliance certifications, demonstrating adherence to internationally recognized standards for data centre security and operational best practices.

You can view their full compliance frameworks and data centre controls at the following links:

We prioritize the protection of personal data and are committed to upholding the highest standards of privacy. We adhere to best practices set forth in the UK Data Protection Act (DPA) and the European Union's General Data Protection Regulation (GDPR), ensuring that all personal information is processed securely.

We only work with established and reputable partners to support the movement of funds. Where partners are involved in facilitating transactions, they are always fully regulated by the Financial Conduct Authority (FCA) and meet strict security and compliance standards. All services connected to sciopay maintain the highest levels of trust, integrity, and regulatory oversight.

The Sciopay platform undergoes regular independent penetration testing to identify and mitigate vulnerabilities, including threats such as code injection, cross-site scripting (XSS), and other common attack methods.

These tests are an essential part in how we protect the security of our systems and ensure the safety of our clients’ data and transactions.

Our platform is secured with role-based access, multi-factor authentication, and continuous monitoring across every stage of the payment lifecycle. All access is monitored and audited to protect against and mitigate suspicious and unauthorized activity.

Hundreds of businesses support over 5,000 clients to move and convert money every day with their own branded payments system - contributing to more than £100 million in monthly payment flow.

Together, they’re part of a rapidly growing network putting payments and currency back into the hands of business owners, under their own brand and with compliance, security, and support handled quietly in the background.
Cross Border Payments
& Foreign Exchange.
Democratized.
Resources
Blog & Insights Webinars & Events APP Fraud Prevention Fraud & Scams Awareness Security
Support
Contact Us Partner Support Complaints Responsibilities
About
Our Story Careers Available Currencies Prohibited Jurisdictions Non-Permitted Activity
Sciopay Ltd is a company incorporated in England & Wales. Registration No: 12352935
Sciopay Ltd is authorised by the Financial Conduct Authority as an Authorised Payment Institution. Firm Reference Number: 927951
Sciopay Ltd is certified by the UK government-backed Cyber Essentials scheme.
Privacy Policy Terms & Conditions Data Processing Policy Cookies Complaints
© 2025 sciopay Ltd
GO LIVE TODAY

Register Your Interest

Make the first move towards increased value from every interaction. Submit your information and one of our concierge team will be in touch, very soon.
We will NEVER share or sell your data with anyone outside of our required onboarding, regulatory and ongoing compliance duties handled by trusted third party partners.