Credit Card Security and Compliance
Our credit card processor is committed to safeguarding customer information and combating fraud. They operate with a mission to provide the most secure and reliable payment solutions for you.
To accomplish this, they dedicate significant resources toward a strong infrastructure, and adhere to both strict internal security policies and industry security initiatives.
You can be confident your data is secure. They utilize industry-leading technologies and protocols, such as 128-bit Secure Sockets Layer (SSL) and are compliant with a number of government and industry security initiatives.
Payment Card Industry Data Security Standard
The Payment Card Industry Data Security Standard (PCI DSS) is a set of comprehensive requirements developed by the major card brands to facilitate the adoption of consistent data security measures. Each year they renew our PCI DSS compliance.
Sarbanes-Oxley, or SOX, is a set of federally mandated accounting standards for all U.S. public company boards, management, and public accounting firms. Our credit card processor is validated annually by external auditors for the current, relevant portions of the Sarbanes-Oxley Act.
SSAE-16 (formerly known as SAS70)
Statement on Standards for Attestation Engagements (SSAE) No. 16, commonly known as SSAE-16 defines the professional standards used to assess the internal controls for organizations that provide outsourcing services
which impact the control environment of their customers. Our credit card processor is validated annually by external auditors for SSAE-16.SSAE-16 can also be referred to as SOC 1 or Service Organization Controls (SOC) 1 report.
Additional Legal Compliance
Our credit card processor and its parent company validate security measures against applicable sections of numerous federal and state laws–HIPAA, GLBA, California Senate Bill 1386 (SB1386), and many others. Their industry partners also perform regular audits.
When your Credit Card is processed, the transaction is totally secure.
All Credit Card Transactions are completed using a 128 Bit SSL Encrypted Secure Transaction. As we transmit the information to the Bank's Secure SSL Server, they require a 128-bit transaction and will not process a transaction without one. Even though 40 or 56 Bit transactions are very secure, our Bank's insistence on 128 Bit SSL means that there is never any chance of your information every being intercepted or decoded. Again, your security is of paramount importance for us.
How can you check if our website is secure?
During the Checkout process, look at the URL of the website. If it begins with “https” instead of “http” it means the site is secured using an SSL Certificate (the "s" stands for secure). Depending on your web browser, you will also see a Green lock to indicate the checkout process is secure.