Haven Co-Brand Program

The real you, verified right in the browser.

Haven shows people a Protected pill when they are on a safe page. Co-branding adds your logo to that pill on the domains you own, so customers can tell your real site from a convincing copy.

junipay.com
Protected by Haven withJunipay

Illustrative example. The mark renders only on junipay.com.

Built for brands that people are asked to trust with money and access

Banks & credit unions Fintech & payments Brokerages & crypto Insurers & benefits Marketplaces
The problem

Phishing does not break your security. It borrows your brand.

Attackers register a lookalike domain, copy your logo and colors, and count on the fact that a real page and a fake one look identical. Customers have no simple, consistent way to check that the site in front of them is actually yours.

Your real site

junipay.com shows the Protected pill with your verified mark. People see it is you.

A lookalike

junipay-secure-login.com can copy your look, but it cannot show your co-brand. The pill stays blank.

How co-brand works

Five steps from agreement to live mark.

You keep control at every step. Nothing to install on your side, and no engineering lift to keep it running.

01

Authorize the mark

Your brand and legal teams approve co-representation and the scope. We record who signed off, when, and for which use.

trademark authorization
02

Bring your logo

Adopt the BIMI mark you already use in email, or paste a brand SVG. Haven validates, sanitizes, and canonicalizes it on our servers.

BIMI or SVG
03

Bind it to your origins

List the domains where the mark may appear, like junipay.com. The co-brand renders on those origins and no others.

bound origins
04

Publish through the gate

A second reviewer approves before anything goes live. The person who prepares a co-brand is never the one who signs it off.

author ≠ approver
05

It appears for Haven users

On your verified site, customers see “Protected by Haven with you.” Update the logo or dates anytime. No extension release needed.

live, and reversible
What you get

More than a logo. Proof it’s you.

A mark lookalikes cannot fake

The co-brand renders only on the origins you authorize. A copycat site can imitate your design, but it cannot show your verified pill.

No engineering lift

Nothing to add to your site or app. Bring a logo, bind your domains, and Haven handles delivery to its users. Logo changes go out with no release.

You stay in control

Bound origins, effective start and end dates, and a one-click kill switch. Change the scope, pause it, or pull it entirely whenever you need.

Shared, not surrendered

The pill reads “Protected by Haven with you.” Your name and logo stay intact. It is co-representation, kept short and clean at up to twelve characters.

Built to be trusted

A trust signal that cannot be borrowed.

A trust signal is only worth showing if it cannot be gamed. Here is what keeps the co-brand honest.

Verified-origin display only

The mark appears on the domains you bind, and nowhere else. It cannot be lifted onto a site you do not control.

Human-approved assets

Every logo is validated, sanitized, and canonicalized on our servers before it can go live. What gets reviewed is exactly what renders.

A two-person publish gate

Distinct-actor approval is enforced. The person who prepares a co-brand cannot be the one who publishes it.

Carried on trusted delivery

The mark travels the same protected channel as the rest of Haven, inheriting the exact security posture of the brand it sits beside.

Reversible in one click

Disable any co-brand instantly with the kill switch, or set an end date so it retires on its own.

A full approval trail

Every change is logged with who made it and when, so the state of your mark is always accountable and easy to audit.

Who it is for

If your customers are targeted by impersonation, this is for you.

Banks & credit unions

Give account holders a consistent way to confirm they are logging in to the real institution.

Fintech & payments

The apps people move money through are prime phishing bait. Show them the real front door.

Brokerages & crypto

High-value accounts draw sophisticated lookalikes. A verified mark raises the bar to spoof you.

Any trusted brand

Insurers, marketplaces, benefits platforms, anyone whose name customers are asked to trust online.

Questions

What partners ask first.

Does this require changes to our site or code?
No. There is nothing to install on your side. You authorize the mark and bind your domains, and Haven delivers the co-brand to the people using its extension.
Where does the logo come from?
From the BIMI mark you already publish for email, or from a brand SVG you paste in. Either way, we validate and canonicalize it before it can appear, so the version that renders is the version that was reviewed.
Could our mark show up on a site we do not control?
No. A co-brand renders only on the origins you bind to it. Off those domains, the pill shows Haven alone.
How fast can we change or pull it?
Update the logo, adjust the effective dates, or disable it with the kill switch at any time. Changes propagate to Haven users without waiting on an extension release.
Do we need a trademark agreement?
Yes. Publishing requires a recorded trademark authorization that names who approved the mark, when, and the scope of its use. It is a required step in the publish gate.
Get started

Put your verified brand on the pill customers already trust.

Tell us your domains and who owns brand approval. We will set up your co-brand and walk you through the publish gate.