FINRA

What is FINRA?

The Financial Industry Regulatory Authority (FINRA) is an independent regulator securities firm responsible for overseeing virtually all US stockholders and brokerage firms to maintain administrative, physical, and technical safeguards to protect the confidentiality, integrity, and security of financial documentation including customer records and information.


Who does FINRA apply to?

FINRA applies to every firm and broker that sells securities to the public in the US, as well as any third-party services they utilize.


How does Eyonic support FINRA Standards?

In a continuing effort to ensure data confidentiality, integrity, and availability, Eyonic strives to maintain industry compliance for data protection, handling, and accessibility. As such, we provide for the following aspects of FINRA Compliance:

Requirement:

Eyonic's Online Backup Provides:

Written Information Security ProgramWe have a comprehensive written Information Security Plan that clearly documents our policies and procedures for all aspects of our services. This Plan includes security controls that safeguard customer information by preventing and detecting the unauthorized creation of, addition to, modification of, or deletion of records. We ensure that our staff understand the importance of our Plan and operate by all policies and procedures.
Clearly Documented SystemsClearly documented processes and procedures to include all facets of safeguarding customer information exist for all of our services. The Plan is reviewed annually to ensure it continues to meet the needs for which it was created in the evolving environments of business and technology.
Physical
Safeguards
Physical access to our data centers is limited and strictly controlled. Only those employees with a demonstrated need are permitted access. Access is controlled by a series of technical controls such as physically keyed and/or combination locks on cabinets and safes. Physical access is documented and logged.
 Third-party data centers are not used in conjunction with our services.
Technical
Safeguards
To ensure the secure transmission and maintain the integrity of customer information, we utilize industry standard 256-bit encryption for all documents in transit.
 Access to files is available only to customers using valid credentials through an authenticated login; no anonymous sharing of files.
 Customer information is disposed of in a secure way including, but not limited to, micro-cut shredding of paper documents, and NSA, HIPAA and HITECH compliant drive destruction for broken or replaced storage media.
 Activity logs include the complete audit history of who accessed, modified, or deleted files stored within our services.
 Internal support personnel may access customer accounts for support purposes only, but cannot open, modify, or alter files in any way. Support personnel with this access are limited to the lowest access level necessary while still providing sufficient customer support.
 Granular access controls allow access to be granted based on the user and/or folder level depending on the service type.

What does it all mean?

Private information, financial or otherwise, stored with Eyonic Systems does not get shared, viewed, distributed, monitored, or copied by any third party which helps support FINRA compliance for those financial securities firms required to do so. FINRA is a securities firm obligation and Eyonic Systems takes every reasonable safety precaution to protect the integrity of all private information stored within, which provides our customers with the tools needed to work in a FINRA-compliant manner.

To learn more about FINRA Compliance and consumer protections, please visit the FINRA website.