Trust
Security Statement
Last updated: 11 May 2026
SentraRisk Systems is designed to help organisations review transaction risk with clear access controls, auditability, and customer-controlled data handling.
Account and Access Controls
SentraRisk supports business account structures with administrative controls for managing users, roles, account access, and API keys. Administrators are responsible for creating and revoking access for their organisation.
API Key Management
Organisation administrators can create and revoke API keys used to connect SentraRisk to business systems. Customers should protect API keys, rotate them when needed, and revoke keys that are no longer required.
Audit and Review History
The platform includes audit logs, alert review status, reviewer notes, and transaction risk reports to support accountable decision-making and internal review.
Local and Customer Environment Security
SentraRisk may run through a mix of cloud services and local or customer-controlled environments. Customers are responsible for securing their own infrastructure, local profiles, devices, credentials, backups, network access, and data-handling procedures.
Data Control
SentraRisk is designed so customer transaction data can remain within the customer's controlled environment where applicable. Account, security, billing, and access-control data may be processed as needed to operate the service.
Human-Led Decisions
Risk scores, fraud indicators, and alerts are decision-support tools. Customers remain responsible for human review, investigations, and final business decisions.