Security you can audit,
not just hope for.
Your money and your data are protected by independently-audited controls, hardware-backed keys, and a tamper-evident record of every action — exportable for any audit.
Funds at member banks
Deposits are spread across a network of FDIC-insured banks for coverage up to $5M — never held by us directly.
Hardware-key enforcement
Require WebAuthn security keys for logins and for any payment above a threshold you set. Phishing-resistant by design.
Immutable audit log
Every change, approval and payment is recorded in a tamper-evident log, retained for seven years and exportable on demand.
Granular roles & quorums
Role- and attribute-based access down to the field, with 2-of-3 approval quorums for high-value movements.
Encryption everywhere
AES-256 at rest, TLS 1.3 in transit, and isolated key management — with secrets that never touch application logs.
Continuous testing
Independent penetration tests, a public bug-bounty program, and 24/7 monitoring with on-call response.
Built for the people who sign off.
- ✓Reports on requestSOC 2 Type II and PCI attestations available to every customer under NDA, plus a live trust center.
- ✓Data residencyChoose where your data lives, with isolation between customers at the storage layer.
- ✓Responsible disclosureFound something? Email security@meridian.example — we respond within one business day.
Bank with controls you can prove.
Open an account in minutes, or talk to us about your compliance requirements.
Open an account