Security Commitment for Alhambra Bank and Trust
Alhambra Bank and Trust, located in the Cayman Islands, is fully committed to protecting the security and privacy of our clients’ data. Our approach follows industry-standard data security frameworks and best practices, ensuring compliance with the Cayman Islands Monetary Authority (CIMA) regulations and international standards.
Our Approach
Customer Data Protection
At Alhambra Bank and Trust, we implement robust measures to safeguard
- Logical Tenant Separation: We ensure strict isolation of customer data to prevent unauthorized access.
- Encryption In-Transit: All data transmissions utilize TLS 1.2 and TLS 1.3 protocols.
- Encryption At-Rest: Customer data is secured using AES-256 encryption.
Application Protection
To fortify our digital infrastructure, we employ
- Web Application Firewall (WAF): This provides an additional layer of security against web-based attacks.
- Distributed Denial of Service (DDoS) Protections: We implement measures to mitigate the risk of DDoS attacks.
Organizational Security
Our commitment to security extends throughout our organization
- Security Education & Awareness Training: All staff undergo regular training to maintain the highest standards of security awareness.
- 24/7 Monitoring and Incident Response: Our dedicated team provides round-the-clock surveillance and rapid response to potential security incidents.
- Vendor Risk Management: We carefully assess and monitor all third-party vendors to ensure they meet our stringent security standards.
Infrastructure Security
Our infrastructure is designed with security as a top priority
- Cloud Infrastructure: We utilize a leading cloud infrastructure provider (Microsoft Azure) to ensure robust and scalable security measures.
- Network and Perimeter Protection: Multiple layers of security are implemented to protect our network boundaries.
Compliance Standards
Alhambra Bank and Trust adheres to several international compliance standards, demonstrating our commitment to security and data protection:
PCI DSS Level 4
We maintain compliance with the Payment Card Industry Data Security Standards (PCI DSS) Level 4, ensuring the secure handling of cardholder data.
SOC 2 Type 2
Our systems and processes have successfully undergone a SOC 2 Type 2 audit, verifying our compliance with the principles of Security, Availability, Processing Integrity, Confidentiality, and Privacy.
ISO 27001:2013
We have implemented an Information Security Management System (ISMS) in accordance with ISO 27001:2013 standards, demonstrating our commitment to managing information security risks.
ISO 27701:2019
Our Privacy Information Management System (PIMS) complies with ISO 27701:2019, supporting our compliance with global data privacy requirements, including GDPR and CCPA.
Regulatory Compliance
As a financial institution in the Cayman Islands, we strictly adhere to all regulations set forth by CIMA:
- We conduct thorough Customer Due Diligence (CDD) and Know Your Customer (KYC) checks in compliance with CIMA’s Anti-Money Laundering Regulations (AMLRs).
- Our risk-based approach to due diligence aligns with CIMA’s requirements, including enhanced due diligence for high-risk customers.
- We maintain a minimum capital adequacy ratio of 15%, exceeding CIMA’s statutory minimum of 10%.
- Our operations comply with the Banks and Trust Companies Act, the Proceeds of Crime Act, and other relevant Cayman Islands legislation.
By implementing these comprehensive security measures and maintaining compliance with both local and international standards, Alhambra Bank and Trust demonstrates its unwavering commitment to protecting client data and maintaining the highest levels of security in the financial services industry.