Security & compliance

Emburse Nexonia uses a variety of security technologies and procedures to help protect your personal information from unauthorized access, use, or disclosure. When you enter sensitive information (such as a credit card numbers) on our order forms, we encrypt the transmission of that information using secure socket layer technology (SSL). You are also required to use a password to securely access your account.


Nexonia undergoes annual SSAE 16 SOC 1 Type 2 audits.

Secure web

Nexonia only allows https SSL access to our systems, both from the web and our advanced mobile clients. You can read more here about SSL secure web.

PCI compliant

Nexonia is PCI security standard compliant for handling credit card data.

Seven years of storage

We store all your data for a minimum of 7 years with no archiving. It’s all instantly available. If you want, we can deliver your receipts offsite as well, all at no extra charge.

Security updates

SOC Compliance

Nexonia has successfully completed its System and Organization Controls (SOC1) Type 2 examination. The examination, conducted by an independent accounting and auditing firm, evaluated the processes, procedures and controls for security, availability and confidentiality of Nexonia

EU General Data Protection Regulation (GDPR)

In May 2018, the EU General Data Protection Regulation (GDPR) will replace the existing 1995 EU Data Protection Directive (European Directive 95/46/EC).
Nexonia is committed to achieving GDPR compliance when the GDPR takes effect May 25, 2018. Certify, Inc.’s Data Protection Officer and applicable legal, IT, Sales/Marketing and Support teams are in the process of ensuring our products, services, contracts and legal documents meet all GDPR requirements.