Eventleaf Security Guide

PCI Compliance

The Payment Card Industry (PCI) Data Security Standards (DSS) is a global information security standard designed to prevent fraud by protecting the way credit card data is processed and stored. Organizations that process credit card payments must follow PCI DSS standards.

Eventleaf is certified PCI DSS 3.2 compliant. The service is audited on a regular basis by SecurityMetrics, a PCI qualified auditor. In order to achieve PCI certification, Eventleaf maintains rigorous data security standards to ensure that its customer's credit card information remains safe and secure. Further information is available upon request.

Hosting Environment

Eventleaf is hosted on the Microsoft Azure platform. Microsoft Azure is PCI DSS 3.1 certified. For more information, visit the Microsoft Trust Center.

Data Protection

Eventleaf encrypts sensitive information such as passwords and credit card numbers using the strong, industry-standard cryptographic protocol, AES-256. Data is maintained in Microsoft Azure and all data communications are encrypted using 256-bit SSL certificates.

Employee Data Access

Eventleaf is developed and maintained by Jolly Technologies Inc, a California-based corporation. All employees must pass rigorous background checks. Employee access to customer data is strictly limited to a need-to-know basis.

Privacy

We have a strict policy to respect the privacy of customer information. We will not disclose your information to 3rd parties without your express permission. For more information, please refer to our Privacy Policy

If you have any questions or would like more information, please contact us.