SOC1 SOC2 Seal

PCI Compliance Seal

Security



What is Checkbook?

Checkbook is a secure payment solution that, provides businesses and consumers with an easier and more secure way to make online payments. Instead of using paper Checks, businesses and consumers can pay/receive payments safely online with Digital Checks wherever Checkbook’s payment systems are available.

How secure is Checkbook?

Data security is top priority at Checkbook. Our infrastructure was built from the ground up with stringent security checks. Our system architecture combines data encryption with tokenization to keep data secure at all times throughout the transaction process, providing a secure buyer experience while minimizing risk and reducing compliance costs for your business. Our founders helped define Security Standards at Visa and brought this knowledge to the development of Checkbook’s security standards.

How does Checkbook securely store customer data?

Checkbook stores all production data in a physically secure PCI DSS (Payment Card Industry Data Security Standard) Compliant off-site data center(s). In addition, all access to Checkbook’s servers is through encrypted networks. Finally, Checkbook has strict policies for access control that limit who can access data and when, on a need to know basis.

How is the movement of data controlled between Checkbook and the API or the browser?

Communication between the browser and/or API and Checkbook's servers occurs via secure protocols, i.e. over SSL. All movement of data between the end-point and Checkbook is encrypted and transmitted over SSL. Checkbook uses API keys for each merchant/end-user, thereby reducing any possibility of tampering. The merchant’s API key is secured by the merchant.

What is the end user’s liability if Checkbook’s datastore is compromised?

The end user's financial liability varies on a multiplicity of factors including whether the end user is an individual or a business; The probability of a breach is extremely low given the multiple steps Checkbook takes to protect data: 1. All data is stored on servers in a certified data center(s). 2. All data is encrypted during transit. 3. A limited number of individuals have access rights to the data.

How can Checkbook verify my Bank information without storing it?

Checkbook POSTs your bank login credentials to your bank using certified and audited APIs from bank vetted institutions. At no time are your login credentials stored anywhere in Checkbook’s servers. Your Routing Number and Account Number are the only financial information that is stored on Checkbook’s servers.

What additional steps does Checkbook take to mitigate fraud?

Checkbook has fraud detection at every level of a transaction designed to protect both businesses and consumers. Limits and velocity checks are standard for each transaction at the user level and at the time level. In addition, Checkbook employs pattern checks for additional fraud control. All applications and modules developed by Checkbook follow secure coding guidelines, including those recommended by OWASP.

External Audits

SOC 1/SOC 2/SSAE 16


Ready to get started?

Contact us or create an account