Security is paramount at Stuypend


We combine best-in-class security technology with common sense measures to keep you safe when using Stuypend.

Stuypend is built on the Dwolla API provided by our ACH technology provider, Dwolla Inc, together with their network of bank and financial institution partners. Dwolla employs bank-level security techniques including the same standard security protocols used in online banking, and other practices used in most financial mobile apps (learn more about Dwolla's security here and here). Dwolla connects you securely and directly with your bank when you sign up, meaning that Stuypend never receives or stores your financial information. We are unable to access your banking information and therefore no banking information is kept on Stuypend’s servers.

Similarly, no banking information is stored on your device. After you complete the authentication process with your bank during sign up, only a randomized token is stored on your mobile device that allows you to initiate payments from the device, an additional security step.

To prevent unauthorized purchases, the Stuypend app can be secured with a PIN code or fingerprint lock on devices that support fingerprint scanning. We strongly recommend setting up one of these options to keep your transactions secure, and using one of these options or a password to lock your phone as well.

Customer users also confirm purchase amounts on their phone before the transfer is initiated, ensuring that payment amounts are correct.

Finally, Stuypend limits the total amount of payments that can be made per day to $30 by default. This amount can be changed in the app’s settings.

All data transfers through Stuypend, and all the information that is stored on our servers are secured using strong encryption.

Encryption is an important tool for keeping data safe online and it's important for users to have knowledge of how it works. Here are good resources from non-profit Mozilla and the BBC.