SECURITY



What is Checkbook?

Checkbook is a secure payment solution that, provides businesses and consumers with an easier and more secure way to make online payments. Instead of using paper cheques, businesses and consumers can pay/receive payments safely online with Digital Cheques wherever Checkbook’s payment systems are available.

How secure is Checkbook?

Data security is top priority at Checkbook. Our infrastructure was built from the ground up with stringent security checks. Our system architecture combines data encryption with tokenization to keep data secure at all times throughout the transaction process, providing a secure buyer experience while minimizing risk and reducing compliance costs for your business. Our founders helped define security standards at Visa and brought this knowledge to the development of Checkbook’s security standards.

How does Checkbook securely store customer data?

Checkbook stores all production data in a physically secure PCI DSS (Payment Card Industry Data Security Standard) Compliant off-site data centre(s). In addition, all access to Checkbook’s servers is through encrypted networks. Finally, Checkbook has strict policies for access control that limit who can access data and when, on a need to know basis.

How is the movement of data controlled between Checkbook and the API or the browser?

Communication between the browser and/or API and Checkbook's servers occurs via secure protocols (i.e. over TLS). All movement of data between the end-point and Checkbook is encrypted and transmitted over TLS. Checkbook uses API keys for each merchant/end-user, thereby reducing any possibility of tampering. The merchant’s API key is secured by the merchant.

What is the end user’s liability if Checkbook’s datastore is compromised?

The end user's financial liability varies on a multiplicity of factors, including whether the end user is an individual or a business. The probability of a breach is extremely low given the multiple steps Checkbook takes to protect data: 1. All data is stored on servers in a certified data centre(s). 2. All data is encrypted during transit. 3. A limited number of individuals have access rights to the data.

How can Checkbook verify my bank information without storing it?

Checkbook POSTs your bank login credentials to your bank using certified and audited APIs from bank vetted institutions. At no time are your login credentials stored anywhere in Checkbook’s servers. Your routing number and account number are the only financial information that is stored on Checkbook’s servers.

What additional steps does Checkbook take to mitigate fraud?

Checkbook has fraud detection at every level of the transaction process, designed to protect both businesses and consumers. Limits and velocity checks are standard for each transaction. In addition, Checkbook employs pattern checks for additional fraud control. All applications and modules developed by Checkbook follow secure coding guidelines, including those recommended by OWASP.

External Audits

SOC 1/SOC 2/SSAE 16

Ready to get started?

Explore Checkbook, or create an account instantly and start sending payments. You can also contact us to design a custom package for your business.

icon
Always know what you pay

Integrated per-transaction pricing with no hidden fees.

icon
Start your integration

Get up and running with Checkbook in as little as 10 minutes.