We utilize the PBKDF2 algorithm with a SHA256 hash. This means we never see your password and Reimbi never passes user passwords in plain text.

Our servers are protected by firewalls and not directly exposed to the Internet.

We use internal and third-party systems to monitor the confidentiality, integrity, and availability of our platform. If an incident occurs, a team of engineers is alerted immediately. And, if needed, we'll alert our customers without delay. We conduct routine vulnerability scans, penetration tests, and ensure our development efforts follow industry-standard guidelines/best practices. Additionally, vulnerabilities in third-party libraries and tools are monitored and software is patched or updated promptly when new issues are reported.

We follow formal documentation to ensure consistency and reliability in our security. This includes requiring all employees to abide by our information security policy and insisting on SLAs (where possible).

Reimbi performs background checks on all new employees in accordance with local laws. The background check includes employment verification and criminal checks for US employees.

If you would like to correct, amend or delete any information in the Reimbi application, you can either change your personal preferences on the "My Profile" page or email us at support@reimbi.com.