Payment security
In order to ensure the utmost level of protection for our customers, we take payment security extremely seriously and have continuously selected the best partners (at an extra cost) to ensure the highest level of protection. As part of our commitment to maintaining data security, we strictly adhere to the standards set by the Payment Card Industry.
Credit card-based payment:
In order to facilitate credit card-based payments, we use a service called Stripe which is audited and certified as a PCI compliance level 1 service provider. This means the firm has to submit an annual compliance report and maintain routine security scans and tests to ensure their service remains compliant. Stripe encrypts all customers’ credit card numbers and stores decryption information separately, which means Stripe can’t see credit card numbers without taking extra steps. Furthermore, no credit card details are stored, logged or handled on our servers – they are completely stored and managed by Stripe.
More information regarding Stripe payment security can be found here.
Paypal-based payments:
We can not currently accept new (or switch existing credit card subscriptions to) Paypal-based payments. Paypal payments will continue to be accepted and processed for existing customers that were already paying via Paypal.
All PayPal payments are sent directly via a secured connection to our billing and payments handler Recurly. Recurly provides enterprise-class billing services for a huge number of subscription service businesses and provides the highest level of data and payment protection. The secured payment connection is verified by a secured socket layer (SSL) which is signed and certificated by GeoTrust. This should also be verified by your choice of browser.
More information regarding Recurly payment security can be found here.