Bank to YNAB link security questions.
I understand the connection bit is implemented via Plaid's api but id like to understand more (from the lowest level engineering perspective allowed) about how transactions are shipped from a bank to ynab, what data is within in each request, what data ynab stores in order to keep the bank link alive and the general security regarding the storage of that data if any.
Hi Jon !
We know security is important to you, and as YNAB users ourselves, we understand exactly why. When it comes to data aggregation, we wanted to leave the lifting in the hands of professionals with more experience, to ensure that security.
Our import partners do need to store your credentials in order to use them to connect to your financial institution to import transactions—but they are encrypted for your protection. They have significant experience handling sensitive information like this as an aggregation provider, but if you are uncomfortable for any reason, the Direct Import feature is completely optional.
If you have any other questions, please don't hesitate to ask! :)