Overview

OFDSS establishes a common framework for consumer data security, privacy and control that also supports innovation among new and emerging cloud-native, digital finance companies.

Why OFDSS?

Learn why existing security standards weren't enough for cloud-native fintech companies.

Control Domains

79 individual security requirements across 13 control domains.

Documents

Access the latest version of the OFDSS standard (V1.2).

Get Involved

Join the working committee or contribute feedback to the standard.

What is OFDSS?

The Open Finance Data Security Standard (OFDSS) is a collaborative framework for data security in emerging digital financial services. It establishes a common set of security requirements designed for modern, cloud-native companies operating in the financial services space.

Key Benefits

• Improve data security for the digital finance ecosystem
• Establish a strong, auditable framework for early stage, cloud-native companies
• Foster innovation by providing guidelines optimized for startups and growth-stage firms
• Align with existing enterprise standards including SSAE18 TSC and NIST CSF

The Framework

OFDSS covers 79 individual security requirements across 13 control domains, including Resource Allocation, Asset Management, Access Controls, Cryptography, Incident Management, and more.

Getting Started

If you would like to learn more, contribute feedback to the standard, or apply to join the working committee, visit the Get Involved page or contact us directly.