What is Finch?

Payroll systems house data that can be used to power other apps and services, such as data on employee count, employment status, income history, benefits enrollment, and more. Finch will specify what data the platform is requesting so that you can make an informed decision about what data you would like to share.

Finch may require specific permissions to access the scope of data being requested from the platform. In order to consent to sharing certain types of data, admin privileges are required.

Depending on the integration, you may need to re-authenticate to keep your connection active. Authentication requirements vary, and are dependent on security protocols and cookie expirations set by each provider. Any integration, via Finch or otherwise, will be subject to similar requirements.

Finch prompts employers to review and consent to share any data requested by a platform. Finch discloses data privacy practices before any connection is established, so you know how your data is transferred and stored.

Finch utilizes best-in-class encryption protocols and compliance standards to keep your data safe.

Our infrastructure enforces the use of TLS 1.2 to encrypt data in transit, and AES 256 bit encryption for data at rest. Data is backed up across our data stores each day, and all backups are encrypted. We also employ strict data retention policies. We erase data from our system when a connection is deactivated.

We are SOC 2 and CCPA compliant and seek to protect personal data from unauthorized access, use and disclosure with physical, technical, organizational and administrative security measures based on the type of data and how it is being processed. SOC 2 is an independent audit report which details information and assurance about Finch’s controls.

We do not sell identifiable or anonymized employer or employee data.

Without Finch, platforms must ask employers to regularly update company and employee data in their system, usually through manual data uploads. The alternative is to build and maintain hundreds of integrations themselves, which limits their capacity to offer new services. With Finch, they can offer a better user experience, support more integrations, and focus their engineering resources on building additional features and services.