Data Security at TrulySmall – What’s New

Ready to streamline your invoicing experience? Try TrulySmall™ Invoices for free!
Share on facebook
Share on twitter
Share on linkedin

Learn how TrulySmall handles your security. A more detailed version of our privacy policy can be found here.

At TrulySmall when it comes to your financial data, security is paramount. We understand that the idea of sharing sensitive financial information with a third party raises necessary questions about the security and privacy of your data. We are committed to keeping your data secure with best-in-class security tools and practices. Here’s how we do it:

Data Security at TrulySmall


We employ sophisticated security safeguards to ensure that the user bank data that we are trusted with is properly secured. Here’s how we handle bank connections and credit card payment processing:

Two-Factor Authentication

Two-factor authentication (2FA) is a security method that requires two forms of identification to access resources, platforms, or data. TrulySmall is committed to protecting user data and we have implemented 2FA to ensure that our user’s assets are safeguarded and cannot be accessed without proper identity verification. 

Bank connections

Once submitted, your banking credentials are sent to our bank connection partner’s end via TLS, considered the gold standard for cryptographic data transfers. Our partners are PCI-certified Level 1 Service Providers, which is the most stringent level of certification available in the payments industry.

Upon receipt, your credentials are encrypted, ensuring end-to-end security of your data. At no point are your banking credentials accessible to anyone on our end, or our partner’s end. 

Payment processing

Once submitted, your credit card credentials are sent to our payment processing partner’s end via TLS to ensure safe delivery of your data. Upon receipt, your credit card number is encrypted with AES-256, again considered the gold standard of encryption worldwide. 

At no point is your credit card information accessible to anyone at TrulySmall, or on our payment processor’s end.


User privacy is critical and (TrulySmall/Kashoo) is committed to maintaining stringent privacy standards to safeguard user information. Here’s how we handle privacy:

Data collection

TrulySmall does not sell or distribute user data to any third parties. Any TrulySmall user account information is encrypted and stored within our subscription database, where it is accessible to a limited number of our employees. 

Note: your banking credentials and credit card information are never accessible to our employees, or any third parties. 

Right to be forgotten

The right to be forgotten enables consumers’ requests for organizations to delete their data. Should you ever feel the need to request account deletion, you can rest assured that we will not warehouse your data. 

TrulySmall was built to enable users with the tools they need to better manage their finances. And our platform works best with a little help from our users, via bank connectivity and credit card processing. We also understand that these are sensitive topics that command the utmost attention to security and data privacy, which is why we employ best-in-class security practices and protocols to protect your information. 

If you have any questions about data security, don’t hesitate to reach out to our support team. 

Share on facebook
Share on twitter
Share on linkedin
Did you know that using invoicing software not only helps you to get paid faster but also reduces your invoicing costs by 29%? Start sending invoices free today with TrulySmall™ Invoices!