Security and compliance are priority
spaydy’s platform meets the highest certification standards to help reduce compliance burdens for your business and keep payments safe.
Security
HTTPS and HSTS
for secure connections spaydy forces HTTPS
for all services using TLS (SSL)
AES-256 encryption
All card numbers are encrypted on disk with AES-256
Decryption keys are stored on separate machines
Isolated infrastructure
spaydy’s infrastructure for storing, decrypting,
and transmitting card numbers runs in
separate hosting infrastructure, and doesn’t share
any credentials with spaydy’s primary services
Compliance
PCI DSS Level 1
The Payment Card Industry
Data Security Highest Standard
PSD2 and
Strong Customer
Authentication (SCA)
Payment Services Directive (2015/2366)
of the European Parliament and
of the Council on Payment Services in the Internal Market
AICPA | SOC
The System and Organisation Controls (SOC)
is a set of standards designed by the
American Institute of Certified Public Accountants (AICPA)
to create a level of confidence and trust for organisations
when they engage a third-party to provide important services