Security System Foundations

tastyworks handles the security of your account and your personal information very seriously. We consider security from top to bottom within our organization, and design and deploy a myriad of defensive system configurations, security devices, and real-time monitoring systems to protect access and privacy surrounding your account.

Data Encryption Protocols

As a rule, we encrypt our interactions with you and as much of the data we collect from you as possible, which means encrypting data at rest and in transit. We employ industry recognized and adopted high standards in encryption protocols to protect the data that flows between you and our systems (TLS v1.2 256-bit or higher). Your connection to our servers is signed with SSL Certificates issued from well-known and trusted authorities to ensure that you can trust that you are communicating with us and not some imposter.

To protect your identity and access to your account, we hash your passwords and other important security credentials to make it very difficult to determine what they are, even if someone has direct access to the raw information.

Vigilance

tastyworks regularly reviews, assesses, audits and fortifies our systems and code. We engage professional security consultants to identify and assess security vulnerabilities, proactively test our defensive measures, and independently review our systems.

We monitor employee access to data, run background checks, segregate internal business units and their access to information as necessary. We control access to our networks with very stringent policies and controls.

Good Security Requires Your Help, Too

We do our part to protect you and your account, but you can help protect yourself with the following practices:

Choose a strong password. Part of a good strategy for security is to choose strong passwords, and more importantly ones that are not shared with other accounts at other organizations. This way, a compromise at another company will not inadvertently give away your credentials here at tastyworks. Other general best practices include choosing a longer password of at least 12 characters, including a mix of lowercase and uppercase letters, numbers, and special characters.

Monitor your account activity. Make sure you are aware of any changes or activity in your account, and if you see anything which you can’t explain, please notify us immediately. We will normally try to notify you using emails, SMS messages and/or push notifications for certain changes in your account, but there may be some instances where you may notice something wrong before receiving a notification from us.


tastyworks does not provide investment, tax, or legal advice. tastyworks’ website and brokerage services are not intended for persons of any jurisdiction where tastyworks is not authorized to do business or where such products and other services offered by the Firm would be contrary to the securities regulations, futures regulations or other local laws and regulations of that jurisdiction. Options involve risk and are not suitable for all investors as the special risks inherent to options trading may expose investors to potentially significant losses. Please read Characteristics and Risks of Standardized Options before deciding to invest in options.

Futures accounts are not protected by the Securities Investor Protection Corporation (SIPC). All customer futures accounts' positions and cash balances are segregated by Apex Clearing Corporation. Futures and futures options trading is speculative and is not suitable for all investors. Please read the Futures & Exchange-Traded Options Risk Disclosure Statement prior to trading futures products.

Copyrights, logos, and trademarks are property of tastyworks, Inc. All rights reserved. tastyworks, Inc., member
FINRA | SIPC | NFA