Data Security at Ethos

Our promise with your data

We don’t sell your data or personal information for cash. Period.

How we protect you

Safeguarding your information starts before you share it with us. Ethos has built a robust data security program to prevent, detect, and respond to security threats. Here are some of its elements:

Encryption

Ethos leverages industry leading encryption technologies to protect your data, both in transit and at rest. We leverage TLS V1.2 over our websites, an encryption protocol intended to keep data secure when being transferred over a network. Ethos’ website is rated A by Qualys’ SSL Labs, a leading assessor of website encryption capabilities.

Multi-factor authentication

Multi-factor authentication (MFA) provides an additional layer of data security beyond your username and password. Ethos has implemented and requires MFA for accessing systems storing customer data.

Oversight

Ethos engages with 3rd parties to validate its data security program. These audits evaluate the effectiveness of cybersecurity controls across the organization to ensure we’re getting it right, consistent with the best industry standards.

How to protect yourself against fraud

You can effectively protect yourself against fraud by knowing some telltale signs of fraudulent attempts to obtain your information. Here’s how to spot two common methods of fraud:

Fraudulent emails

Phishing and spoof emails aim to obtain your secure information, passwords, or account information. These emails use deception, such as impersonating/forging the email address of the senders. Oftentimes, there will be a request of some sort, such as following a link or replying with some information.

Suspicious websites

It is relatively common for fraudsters to try to impersonate real websites. Ethos sites always use SSL (i.e., https://ethoslife.com rather than http://ethoslife.com). The security icon (padlock) in your browser indicates the authenticity of a site.

What should I do if I think I’ve encountered a fraudulent email or suspicious site?

If you come across sites impersonating ethoslife.com or receive a suspicious email originating or pretending to originate from Ethos, please forward it to spoof.alert@getethos.com. We will review the message to determine if it’s malicious and take the necessary actions, as needed. Taking the time to report such matters will not only protect you, but the overall Ethos community.

Want to learn more?

Whether you’re concerned about online and mobile security, our policies and practices, fraud, identity theft, or ways you can protect yourself, we’re always happy to answer your questions. Please reach out to us at security.talk@getethos.com.

To report potential security vulnerabilities to the Ethos Information Security team, please see our Public Vulnerability Disclosure Policy.

We take privacy seriously. By using our site you agree to our privacy policy.