When you purchase a paid VaxCalc subscription, update credit card info or billing information, your credit card data is not transmitted through nor stored on our systems. Instead, we depend on Stripe, a company dedicated to this task. Stripe is certified to PCI Service Provider Level 1, the most stringent level of certification available. Stripe’s security information is available online.
All access to the VaxCalc website is restricted to HTTPS encrypted connections. All data retrieval from Stripe is done with your unique access token over a secure connection with Stripe’s API.
User passwords are secured with BCrypt. They are never stored in the database in plaintext and are not readable by staff. Passwords do provide access to the VaxCalc website, however, and it is the responsibility of the end user to protect her password with care.
When working a support issue we do our best to respect your privacy as much as possible, we only access the minimum data needed to resolve your issue.
It’s worth noting that our staff is quite small, limiting the number of individuals who would provide you support.
Have a question or concern? Please contact support.