Arrow Icon
blog header pale blue image blog header abstract shape

Heart of Advice

Insights and best practices for successful financial planning engagement

left arrow Back to All Articles

6 Important Questions to Ask Your Tech Vendor

eMoney Communications Team June 13, 2018

Updated on: February 3, 2021

Your clients trust you with their private financial data, and you probably feel a responsibility to protect that data. But what you may not know is that securities regulators hold advisors accountable – not their technology vendors – when client data is compromised. That can amount to fines and settlements with the Securities Exchange Commission, regardless of any harm or loss of information.

Don’t let flimsy security policies cost you. Here are six important questions to ask your tech vendors to make sure the technology used by both you and your clients meets the highest standards.

1. How frequently do you update your security defenses?

Online threats are constantly evolving. Your tech vendor should fully understand the security landscape and take steps to continually evaluate and strengthen their infrastructure. Ask your tech vendor if they conduct annual audits, penetration tests and how often they monitor their production network for intrusion.

2. What level of data encryption do you use?

Encryption is a way to ensure only authorized parties can decode and read sensitive information online. Various levels of encryption exist, meaning some do a better job of safeguarding data than others. Your vendor should take a well-rounded approach and encrypt data both at rest and in transit. Make sure you also understand their key management policy (KMP), which is a set of rules a business has to protect information.

3. Do you manage your own servers and storage infrastructure or do you use a third party or a cloud service provider?

This question has less to do with which method is preferred, and more to do with accountability. If a tech vendor manages their own servers and storage infrastructure, you’re dealing directly with the people responsible for protecting your client data. But if the vendor outsources these components, your vetting process should extend to those third parties.

4. Do you monitor for breaches and service intrusions?

Data breach attempts happen more often than you think. Fortunately, organizations have gotten good at detecting and stopping the staggering amount of online threats that face the global market. The best tech vendors monitor their infrastructure for intrusions 24 hours a day, seven days per week.

5. Are both your company and your data centers SOC 2 compliant?

SOC 2 is a type of compliance standard that measures how information is protected online. Businesses seek to become SOC 2 compliant after a thorough audit of security, availability, process integrity, privacy, and confidentiality by a certified third party. Before partnering with a tech vendor, be sure all aspects of their service are SOC 2 compliant.

6. Does security permeate through your company culture?

Your tech vendor should prove, beyond a shadow of a doubt, that protecting your data is a top priority. That means their security policies should run deep within their culture. Find out whether they perform security training for all new employees, if employees need to take annual security assessments, whether background checks are necessary for employees, and if they have an incident response team.


For more information, please visit our website at www.emoneyadvisor.com or contact us at 1-888-362-4612.

Image of eMoney Communications Team
About the Author

The eMoney Communications team is dedicated to helping users find the most efficient and impactful ways to plan for their clients, while striving to make basic and advanced financial planning accessible for all.

You may also be interested in...

Woman at computer in server room

Understanding Dodd-Frank Section 1033: What You and Your Clients Need to Know

Section 1033 of the Dodd-Frank Act is designed to empower consumers by giving them the right to access and share… Read More

Mature couple collaborating with financial advisor

Planning Better Together: The Power of Collaborative Financial Planning

In our ongoing mission to enhance the advisor-client dynamic, our previous Evolution of Advice research laid the groundwork for understanding… Read More

APIs in financial services

Data Lakes, Integrations, and APIs in Financial Services: 3 Ways Firms Can Innovate

Breaking down barriers to create a holistic view of clients’ data is a core challenge financial planning platforms were designed… Read More

eBook: Candid Conversations - Suddenly Single

Download our latest eBook for thoughtful guidance on how to serve clients who have recently lost a spouse or divorced.

Download Now

Sign up to have the most popular Heart of Advice posts delivered to your inbox monthly.

Heart of Advice by eMoney Advisors

Welcome to
Heart of Advice

a new source of expert insights for
financial professionals.

Get Started

Tips specific to the eMoney platform can be found in
the eMoney
application, under Help, eMoney Advisor Blog.