Security

How we protect your financial data.

At YearlyRich, we understand that you're trusting us with sensitive financial information. Security isn't just a feature—it's the foundation of everything we build. Here's how we protect your data.

Bank-Level Encryption

All data transmitted between your device and our servers is protected with 256-bit TLS encryption—the same standard used by major banks worldwide. Your financial information is encrypted both in transit and at rest, ensuring it remains secure at every stage.

Read-Only Access

YearlyRich operates on a read-only basis. We can view your transaction emails to help you track spending, but we can never:

  • Move your money
  • Make transactions on your behalf
  • Access your bank login credentials
  • Modify or delete your emails

This read-only architecture means that even in the unlikely event of a security breach, your funds remain completely safe.

No Stored Bank Credentials

We never ask for or store your bank login credentials. YearlyRich works by reading transaction alert emails that your bank sends to your email address. Your bank account credentials stay with you and your bank—we're never in the middle.

NDPR Compliance

YearlyRich is fully compliant with the Nigeria Data Protection Regulation (NDPR). We follow strict data protection principles including:

  • Collecting only the data necessary to provide our services
  • Being transparent about how we use your data
  • Giving you control over your personal information
  • Implementing appropriate security measures
  • Respecting your rights as a data subject

Secure Infrastructure

Our infrastructure is hosted on industry-leading cloud platforms with:

  • 24/7 monitoring and intrusion detection
  • Regular security audits and penetration testing
  • Automatic security patches and updates
  • Redundant backups with encryption
  • Strict access controls and audit logging

Your Role in Security

While we do everything we can to protect your data, security is a shared responsibility. We recommend:

  • Using a strong, unique password for your YearlyRich account
  • Enabling two-factor authentication (2FA) when available
  • Keeping your email account secure with a strong password and 2FA
  • Being cautious of phishing attempts—we'll never ask for your password via email
  • Logging out when using shared devices

Reporting Security Issues

If you discover a security vulnerability or have concerns about the security of your account, please contact us immediately. We take all reports seriously and will investigate promptly.

Security Team

Email: security@yearlyrich.com

For urgent security matters, please include "URGENT" in your subject line.