Security - Small Business Capital

Security Policy

Effective Date: February 26, 2024

At Small Business Capital, we take security and data protection seriously. Our goal is to ensure that your personal, financial, and business information remains safe, confidential, and protected from unauthorized access, breaches, and cyber threats. We have implemented robust security measures to safeguard sensitive data and provide a secure experience for all users of our website and services.

This Security Policy explains the steps we take to protect your information, how you can help keep your data secure, and what actions we take in the event of a security issue.

For details on how we collect, use, and share your data, please review our Privacy Policy.

1. How We Protect Your Information

We employ advanced security protocols to safeguard all data collected through our website, applications, and customer interactions. These include:

✔ Data Encryption & Secure Storage

•We use 256-bit SSL (Secure Socket Layer) encryption to protect data transmitted between your browser and our website.

•All sensitive information (such as personal details and financial data) is stored in secure, encrypted databases.

✔ Network & Infrastructure Security

•Our servers are hosted in secure, monitored data centers with firewalls, intrusion detection systems, and access controls.

•We conduct regular security audits and penetration testing to identify and fix vulnerabilities.

✔ Restricted Access Controls

•Only authorized personnel with verified credentials can access sensitive data.

•We follow a least privilege access policy, meaning employees can only access the information necessary for their role.

✔ Multi-Factor Authentication (MFA)

•We use multi-factor authentication for internal system access to prevent unauthorized entry.

•Users may be required to verify their identity using a one-time passcode (OTP) or secondary authentication method when accessing secure areas of our platform.

2. Secure Transactions & Payment Protection

We ensure safe and secure financial transactions through:

✔ PCI-DSS Compliance – We adhere to Payment Card Industry Data Security Standards for handling payment-related information.

✔ Fraud Prevention Measures – Advanced fraud detection systems monitor transactions for suspicious activity.

✔ Secure Payment Gateways – All financial transactions are processed through trusted third-party providers that use encrypted payment processing.

3. How We Prevent Fraud & Identity Theft

We take fraud prevention seriously and implement security measures to detect and prevent identity theft, including:

✔ Real-Time Monitoring – We track user activity and transactions for any suspicious behavior.

✔ Account Verification – Users may be required to verify their identity through secure authentication methods.

✔ AI-Driven Fraud Detection – We use machine learning algorithms to detect unusual login attempts, multiple failed transactions, and unauthorized access attempts.

✔ User Alerts & Notifications – If we detect unusual activity, we will send email, SMS, or phone alerts to verify transactions.

If you suspect fraud or unauthorized activity, please contact us immediately at (888) 365-7999 or email [Insert Email].

4. How You Can Keep Your Information Secure

While we take strong security measures, you also play an important role in keeping your account safe. Follow these best practices:

✔ Use Strong Passwords – Create unique, complex passwords and update them regularly. Avoid using personal details such as birth dates or simple sequences.

✔ Enable Two-Factor Authentication (2FA) – If available, enable 2FA to add an extra layer of protection.

✔ Beware of Phishing Scams – We will never ask for your password, PIN, or full Social Security Number via email or phone. If you receive a suspicious message, contact us immediately.

✔ Log Out After Using Public Devices – If accessing our site from a shared or public computer, always log out and clear your browsing history.

✔ Monitor Your Accounts – Regularly review your account activity and transactions. If you notice anything suspicious, report it to us right away.

5. Data Breach Prevention & Incident Response

We have a dedicated security team that monitors for potential threats and takes immediate action if a security breach occurs.

✔ 24/7 Security Monitoring – Our security systems operate around the clock to detect and mitigate cyber threats.

✔ Incident Response Plan – If a data breach occurs, we will:

•Investigate the issue and contain the breach.

•Notify affected users and regulatory authorities (if required by law).

•Take corrective actions to prevent future breaches.

If we detect a breach affecting your data, we will notify you promptly with steps you can take to protect your account.

6. Third-Party Security & Compliance

We work with trusted third-party service providers for data processing, lending services, and analytics. These providers must meet our strict security standards and comply with:

✔ General Data Protection Regulation (GDPR) – If applicable

✔ California Consumer Privacy Act (CCPA)

✔ Payment Card Industry Data Security Standard (PCI-DSS)

✔ Federal and state lending regulations

We do not sell or share sensitive information with unauthorized third parties.

7. Security Updates & Policy Changes

We continually update our security policies and infrastructure to stay ahead of new threats. If we make changes to this policy, we will:

✔ Post the updated Security Policy on our website.

✔ Notify registered users via email or account alerts.

✔ Ensure continued compliance with state and federal security regulations.

We encourage users to review this page periodically to stay informed about our security practices.

8. Reporting Security Concerns

If you suspect a security issue, unauthorized access, phishing attempt, or suspicious transaction, contact us immediately:

📧 Email: [Insert Email]

📞 Phone: (888) 365-7999

📍 Mailing Address: [Insert Business Address]

Our team will investigate and take appropriate action to resolve the issue quickly.

9. Disclaimer & Limitation of Liability

While we implement strong security measures, we cannot guarantee absolute protection against cyber threats. By using our website and services, you acknowledge that:

✔ You are responsible for maintaining the security of your account credentials.

✔ We are not liable for losses resulting from unauthorized access caused by user negligence (e.g., weak passwords, phishing scams, etc.).

✔ In the event of a security breach, we will take reasonable steps to notify affected users and provide guidance on protective measures.

10. Contact Us for More Information

If you have any questions about this Security Policy or how we protect your data, please reach out to us:

📧 Email: info@smallbusiness.capital

📞 Phone: (888) 365-7999

📍 Mailing Address: 1116 Sapelo Ave NE, Townsend, GA 31331

Your security and privacy are our top priorities at Small Business Capital. We are committed to keeping your information safe and secure while providing trusted, reliable financial services.

Protecting Your Data, Securing Your Business.

We take every step necessary to ensure that your personal and business information remains safe. If you ever have concerns, we’re here to help!