Security & Compliance

The only thing more valuable than your money is your personal information. We work diligently and proactively to limit any unwarranted entry and access points to your data. Here are all the ways Lively keeps your information both safe and secure.


Your Data is Secure

HIPAA Compliance

Lively is HIPAA compliant so we’re required by law to keep your sensitive personal health information safe. This isn’t something we take lightly.

AES 256 Disk Encryption

Your personal information is out of reach for unauthorized access. Your data is encrypted on disk using the industrial strength AES 256 disk encryption standard.

SSL/TLS - Hashed Passwords & Encrypted Access

All data is encrypted over the internet and over our internal networks. Additionally, all sensitive data is encrypted at rest. Passwords are hashed in our database using industry best practices.

Two-Factor Authentication

To further protect your account, we’ve added two-factor authentication to ensure only you’ve got access to your personal information.

Data Security Architecture

Our system was architected so that all sensitive Lively servers are hosted in a private subnet not accessible over the internet.


Your Money is Safe

Bank Partner Choice Financial

Lively’s bank partner is Choice Financial, one of America’s 50 fastest growing banks. They care about their customers as much as we do about ours. Your funds are sitting with Choice, not Lively.

FDIC Insured Accounts

Because your account and funds are sitting with our bank partner, Choice Financial, your money is backed by FDIC insurance* (up to the maximum amount permitted by FDIC regulations).

*When you decide to invest with TD Ameritrade, those funds are no longer with Choice Financial and are therefore not insured by the FDIC, are not deposits guaranteed by Choice Federal or Lively and are subject to investment risks, including possible loss of the principal invested.

Investments with TD Ameritrade

TD Ameritrade provides investing and trading services for 11 million client accounts that total more than $1 trillion in assets. That’s why we trust them with our Lively investment accounts. Your invested funds carry SIPC insurance.

Active Anti-Fraud Monitoring

Our team actively monitors our systems and all HSA accounts to spot any issues before they develop. Trust is at the center of our company philosophy.

PCI Compliance Lively is compliant with the Payment Card Industry Data Security Standard (PCI DSS). This means that your sensitive payment card information is safely stored with us. We work hard to keep our systems compliant with the latest standards so you can spend confidently.


Employer Compliance

Section 125

Section 125 cafeteria plan will determine if you can make pre-tax benefits contributions for things like a 401(k) or HSA. Our customer success team will help you review your benefits to make sure you’re up to speed.

Excess Contributions

Automated over-contribution monitoring ensures account holders are always aware of annual maximums based on any number of different criteria. This way, there aren’t any surprises come tax time.


Lively does all the HSA heavy lifting. We immediately eliminate the burden of keeping up with the constant changes to the regulatory nuances of HSAs placed on your risk management, marketing, and customer support departments.

Expert Help

Things might still come up. No matter if it’s yearly contribution update, the last month rule, or an executive order, we can help. The value of our proprietary technology is that we can react quickly to get you back on track. Our team will be here to help you and educate employees regarding any changes.