Financial Security with Archa

Our Approach to Security

As a financial institution and technology company, protecting your financial information is one of our most important responsibilities.

We understand the sensitive nature of the information we collect and believe you should never have to compromise your privacy in pursuit of a better way to manage your business finances.

Whether it’s during the application process to join Archa or once you’re a customer, we have taken extensive steps to protect your data and give you peace of mind.

Assessing your financial information

Just like other lenders, Archa is required by law to consider a businesses’ financials before we make an offer to join us.

To make this process convenient for you and ensure your business banking data is safe, we have partnered with Basiq, one of the industry's most trusted open banking providers.

Through a process known as digital data capture, connecting via Basiq grants us read-only access to your business banking data. This allows us to review your accounts and transactions to make sure our product is a great fit for your business and fast-track your onboarding. For more information about how Basiq works, check out their regularly updated blog.

Once you become a customer, by continuing to share your data with us, we can continue to ensure our product-fit, should your business needs change (such as increasing your credit limit).

All data is managed in accordance with our Data and Information Security Standards and Consumer Data Right (CDR) principles. You also reserve the right to request that we delete your business’ data at any time by contacting us at

Further security measures

Protecting your financial information and data extends from the application process to the day-to-day once you’re an Archa customer.

Accessing the Archa app requires you to enable multi-factor authentication - extra layers of login security designed to prevent anyone but you from accessing your Archa account. The app also has auto-locking, which means that app sessions will automatically lock after a period of time to ensure accounts on unattended or stolen devices remain secure.

Regarding financial fraud, we use the latest fraud detection systems to analyse user behaviour to immediately alert you to any suspicious activity on your account. Cardholders will also not be held responsible for unauthorised transactions under Mastercard’s Zero Liability Protection scheme.

All transaction data on our GCP servers is encrypted at rest using AES256 to protect the financial information you entrust us with.

When you choose Archa as your business spending solution, you’re choosing a company that takes your financial and data security seriously. If you have further questions about our approach to security, please contact our support team at