Secure Payments With Stripe

Stripe is an online and mobile app payment system which has been audited by a PCI-certified auditor and is certified to PCI Service Provider Level 1. This is the most stringent level of certification available in the payments industry. To accomplish this, they make use of best-in-class security tools and practices to maintain a high level of security.

One of their main security tools is Stripe.js. When Stripe.js is used on a website, the credit card data entered into the payment form is never sent to the website's server. Instead, the data is sent directly to Stripe. Why is this so important?

  • Automatically PCI compliant because you don't handle any sensitive credit card data on your servers.
  • More secure because a breach of your servers won't result in any stolen credit card data.
  • You're not tempted to store credit card data on your servers, which you really shouldn't be doing unless you're a big business and want to pay for PCI compliance.
  • If you follow Stripe's payment process, your card details will be stored in their vault which means  your sensitive data won't be managed by businesses. This encourages good security.

For more detailed information on how Stripe's security system works, please click here.

Furthermore, Stripe accepts all major debit and credit cards from customers in every country in 135+ currencies.