Skip to main content
This page discusses how Waycore establishes secure and high quality connections with commercial banking institutions.

The Delegated User Access Model

Every major bank allows account administrators to create sub-users with scoped permissions. This is a standard commercial banking feature, built for exactly this purpose: granting audited, controlled access to third parties like treasury teams, accountants, and software platforms. When a business connects their bank to Waycore, they create a dedicated Waycore user directly inside their bank portal. That user gets only the permissions the business chooses; read balances, initiate transfers, or even execute transfers under certail guardrails. The bank knows Waycore exists. The access is sanctioned, logged, and revocable at any time. This matters for three reasons:
  1. It’s compliant by design. No terms of service are stretched. No bots impersonate account holders. The bank’s own authentication and permission model governs everything Waycore can and cannot do. We’ve validated this approach across the top 250 US banks with outside counsel.
  2. It’s execution-native. Because Waycore operates as a legitimate bank user, it can do everything that user is permitted to do, including initiating transfers, staging payments, and triggering approvals. Screen scrapers can only read. Delegated users can act.
  3. It’s durable. Scraping breaks when banks update their UI. Delegated user sessions persist because they’re maintained through the bank’s own access management infrastructure. Connections don’t silently fail. When re-authentication is needed, we know immediately and handle it, including through human-assisted fallback for banks that require physical tokens or RSA devices.
The result is bank connectivity that behaves like infrastructure: reliable, auditable, and sanctioned from the moment it’s established.

Human Accountability: The “Human-in-the-Loop” Guarantee

While our platform uses automation to efficiently execute tasks, it is never fully autonomous. Every action is supervised by our team of trained financial operations specialists. This is our Human-in-the-Loop (HITL) guarantee.

How It Works:

  1. Agent-First for Efficiency: Our automated systems perform the routine, low-risk tasks of navigating, gathering, and organizing information as directed by you.
  2. Human Supervision for Accountability: A trained human agent supervises a fleet of these automated sessions. The system is designed to automatically pause and escalate to the human agent for review and explicit approval under specific conditions:
    • Errors or Unexpected Events: If the system encounters an error or an unexpected change in the bank portal.
    • High-Risk Actions: Before any high-risk action, such as initiating a payment or modifying account details, the system requires explicit approval from a human agent.
  3. Final Authority Rests with Humans: Our human agents have the final say. They can intervene, correct, or cancel any action at any time. No critical decision is ever made solely by an automated system.

Constrained Automation: Our Safety-First Architecture

Our automation is not a free-roaming bot; it is a highly constrained tool designed for safety and compliance.
  • Rule-Based Execution: The automation follows a strict, predefined set of rules and can only perform the actions you have explicitly authorized in a workflow.
  • No Unsupervised Learning: Our platform does not learn or change its behavior on its own. All updates and changes are made by our engineering team in a controlled development environment.
  • Immutable Audit Trail: Every action taken by the automated system and every intervention by a human agent is recorded in a tamper-evident audit trail within Waycore, providing a complete and transparent record of all activity.

Credentials, Approvals, and Audit Trails: A Secure Workflow

ComponentHow It Works
Credential ManagementYou create and manage credentials within your bank. Waycore stores these encrypted using AES-256 and a dedicated KMS key. No human can view raw credentials.
Approval WorkflowsMulti-step, role-based approval gates are enforced within Waycore before any action is taken. These are in addition to any approvals required by your bank.
Audit TrailsWe maintain two audit trails: an internal, immutable log of all platform activity, and the external log created within your bank’s own systems.
This layered approach ensures that every action is secure, compliant, and accountable, giving you the efficiency of automation with the peace of mind that comes from human oversight.