Secure Cloud Bookings
We utilize some of the most advanced technology for Internet security available today. Your Checkfront application is hosted in a URL unique to your business in a segregated database dedicated to your account. Web services are protected with an industry standard 256 Bit SSL encrypted certificate.
Our systems are PCI DSS compliant and US/EU Safe Harbor certified. Our privacy policy is maintained and verified by TRUSTe®, and our PCI-DSS compliance is validated by Trustwave.
It’s Your Data – We Keep it Secure
Any data associated with your account including transactions and customer records are owned by you. We provide the service and maintain the integrity of your data. We never purge records during the life of your account. You may export all, or part of your data anytime in a variety of portable formats including: XML, CSV and MS Excel®.
We run automatic encrypted backups to ensure your online data will always be safe and protected.
We host and maintain your back-office application, and also take care of future patches and updates for you.
We are constantly improving our features and we provide free updates and regularly add new features for all of our clients at no extra charge.
PCI Policy
Checkfront is PCI DSS compliant. This compliance extends to all accounts powered by Checkfront and transactions that are processed through our system.
The PCI Data Security Standard (PCI DSS) was created by the major credit card companies to ensure the adoption of consistent security measures by all merchants.
There are six categories of PCI standards that must be met in order for a merchant to be deemed compliant:
- Maintain a Secure Network.
- Maintain a Vulnerability Management Program.
- Regularly Monitor and Test Networks.
- Protect Cardholder Data.
- Implement Strong Access Control Measures.
- Maintain an Information Security Policy.
Checkfront does not store cardholder data on premises but relies entirely on third payment gateways to handle these functions. Our third party service providers handle payment processing and storage of cardholder data. All third party processor supported by Checkfront are confirmed to be PCI DSS certified.
* Note that your merchant bank may have additional PCI compliance requirements. Software as a Service applications, such as Checkfront, are considered service providers. PCI compliance is confirmed only for accounts that utilize a compatible payment gateway.
Please see Data Protection, Ownership & Confidentiality in our Terms of Service, or contact us for information on our PCI policy and compliance.
Remote Venerability Scanning
Checkfront undergoes regular PCI Compliance scans to ensure we are PCI-DSS compliant. These scans check for known vulnerabilities and common security holes in server configurations. These scans are performed by our security compliance provider Trustwave.
For additional information on PCI, visit the PCI Compliance Guide
Fast, High Availability Hosting
To deliver maximum reliability and performance, Checkfront operates on a distributed network with data centers in 5 geographically diverse locations including the United States, United Kingdom and Asia. Our data centers are high-speed, redundant powered state of the art facilities.
