Protecting your security & privacy is very important to us at GiveForward and WePay is no exception! Please visit WePay's security FAQs or continue reading below.
The PCI DSS certification process is designed to protect your sensitive data. WePay is a certified Level 1 PCI Compliant Service Provider (the highest level), which requires an annual independent security audit of our processes and systems. They test our system daily (manually and automatically) to ensure security.
WePay uses state-of-the-art cryptographic algorithms during data transmission (HTTPS with RSA 2048 bit key and SHA 256 certificate) and in their databases (AES 256 encryption with unique per-row keys). Their servers are kept in PCI and SSAE16 certified data centers with 24x7 monitoring.
Training and education
All WePay employees undergo background checks and security training. The development team follows strict SDLC process and OWASP security guidelines.
Your money is held in a protected account by an FDIC-insured partner bank, so your funds are never at risk.