Frequently Asked Questions

Is Bill.com Secure?

Bill.com is designed with your privacy and security in mind, providing six categories of protection to help guard your money and sensitive information.

Application Protections

Bill.com helps protect against unauthorized access to your account by:

  • Enforcing a strong password policy

  • Applying 2-Factor Authentication

  • Sending login data over a secure channel

  • Automatically logging out customers after a period of inactivity

  • Educating our customers on the risks of business email compromise schemes

Payment Protections

Reduce risks from check theft by paying vendors with digital payments or checks that are sent by Bill.com on your behalf, rather than keeping blank check stock on your premises and exposing your bank information on checks you send.

Bill.com applies Positive Pay to reduce the risk of check fraud; the bank matches the check issued with the check presented for payment.

Keep your bank account information private from vendors by making digital payments through the Bill.com account.

Network Protections

Bill.com uses security software, intrusion detection and prevention appliances, and network monitoring technology to detect and prevent unauthorized electronic access to our servers.

Data Protections

Bill.com applies an additional level of encryption to protect access to sensitive customer data from malicious applications.

Bill.com uses Transport Layer Security (TLS) and industry standard cipher suites to protect customer data during transit over the internet.

Bill.com replicates production data from the primary site to the co-location facility for disaster recovery scenarios.

Physical Protections

Bill.com servers and network infrastructure are hosted at secure data center facilities managed by leading certified data center providers.

All Bill.com employees undergo background checks and data security and privacy training.

Bill.com has a formal vendor management program to manage third-party risks.

Compliance Protections

Bill.com undergoes an annual SOC 1 and SOC 2 Type II Audit by a leading national CPA Firm.

Bill.com partners with a PCI certified vendor for credit card payments.

Bill.com has adopted an Anti-Money Laundering (AML)/Office of Foreign Assets Control (OFAC) Program, which is designed to prevent the Bill.com Service from being used for purposes of money laundering, terrorist financing, violating or subverting OFAC sanctions, or for other illegal purposes.

See how Bill.com can help your business with a risk-free trial

No credit card required to give it a try.

I'm with a