Finducation™

Finducation - EZBudget™

Security Governance Policy Packet

Official policy index for Plaid and partner security due diligence submissions.

Packet ID: EZB-PKT-001
Version: 1.0
Effective Date: July 8, 2026
Owner: Deseo Developers LLC

Included Policy Documents

Document ID Questionnaire Coverage Policy URL
Information Security and Governance Policy EZB-ISG-001 Documented IS policy and operational security program /policy/InformationSecurityGovernance/
Security Risk Assessment Policy and Program EZB-SRA-001 Documented risk assessment policy with annual cadence /policy/RiskAssessmentPolicy/
Security Audit and Assurance Policy EZB-AUD-001 Independent audits + internal assessments (SOC 2 / ISO-aligned) /policy/AuditAssurancePolicy/
Penetration Testing Policy and Program EZB-PEN-001 Application and infrastructure pen-testing by independent testers /policy/PenetrationTestingPolicy/
Access Control Policy EZB-ACM-001 Documented access control policy and RBAC /policy/AccessControlPolicy/
Consumer Multi-Factor Authentication Policy EZB-MFA-001 Phishing-resistant MFA before Plaid Link on web/mobile /policy/ConsumerMfaPolicy/
Critical Systems Multi-Factor Authentication Policy EZB-MFA-002 Phishing-resistant MFA for critical financial data systems /policy/CriticalSystemsMfaPolicy/
Logging and Monitoring Policy EZB-LOG-001 Audit trails and logs for material production events (Plaid Q22) /policy/LoggingMonitoringPolicy/
Data Retention and Deletion Policy EZB-RET-001 Defined retention, deletion, and periodic review (Plaid Q25) /policy/DataRetentionDeletionPolicy/

Submission Guidance

Open each linked document and use Print / Save PDF to export individual policy PDFs, or print this packet index as a cover sheet for your submission bundle.

Contact: contact@deseodevelopers.com