Your Security

Your Security

When it comes to keeping your data and your money safe, we never rest. We’ve built bank-grade security measures into our systems to make sure you can use Wave with confidence.

Data Security


PCI-DSS Certified: Wave is Level 1 PCI-DSS certified. This means that every year we have a third-party audit to validate our practices and make sure we’re doing the right things for you and your customers.

Secure data transmission: When you load a page in your browser, or upload information to Wave, all that information is encrypted while it’s moving over the internet. We secure your data via encryption.

Secure data storage: Your accounting data is stored on servers that have strict physical access and technical controls, meaning there are rules in place limiting access to only the people who need it to do their jobs. The facilities are monitored 24/7 and access to your information is strictly controlled.

Mobile Security


Passwords are encrypted when they’re collected and when they’re sent to our servers. We don't store them without encrypting them first. In fact, all communications between our apps and our servers are encrypted using security protocols.

Do you have additional questions about the security of Wave? Please contact us. We’d be happy to tell you more about the many steps we take to ensure the security of your sensitive information.

For US Residents

Wave Advisors If you use our Wave Advisors professional services, these terms apply.

Wave Money If you use Wave Money through our web app, mobile app, or API, and are a U.S. business, these terms apply.

Wave Payments If you use Wave Payments through our web app, mobile app, or API, and are a U.S. business, these terms apply.

Wave Payment Service If you make or receive payments through our web app, mobile app, or API, and are a U.S. business, these terms apply.

Wave Payroll If you use Wave Payroll through our web app, mobile app, or API, and are a U.S. business, these terms apply.

Wave Tax Coaching Services If you subscribe to Wave Tax Coaching Services, these terms apply.

Developer API Including but not limited to developer.waveapps.com, api.waveapps.com.

Plaid If you connect your financial institution to Wave for automatic transaction importing, you are bound by this agreement with our data provider.

Stripe If your processing of credit card payments is powered by Stripe, you’re bound by their Terms of Service.

For Canadian Residents

Wave Advisors If you use our Wave Advisors professional services, these terms apply.

Wave Payments If you use Wave Payments through our web app, mobile app, or API, and are a Canadian business, these terms apply.

Wave Payment Service If you make or receive payments through our web app, mobile app, or API, and are a Canadian business, these terms apply.

Wave Payroll If you use Wave Payroll through our web app, mobile app, or API, and are a Canadian business, these terms apply.

Developer API Including but not limited to developer.waveapps.com, api.waveapps.com.

Plaid If you connect your financial institution to Wave for automatic transaction importing, you are bound by this agreement with our data provider.

Stripe If your processing of credit card payments is powered by Stripe, you’re bound by their Terms of Service.