We appreciate this concern and are happy to assure you! Adding a card to the app is safe and secure – in some cases - it is even safer than handing your card to a cashier!
We do not store your card information on our servers. We have partnered with Braintree (http://braintreepaymentsolutions.com), a globally respected payment gateway which is owned by PayPal, to leverage their secure vault solutions for all credit/debit card storage. Our servers are already incredibly secure, but by leveraging Braintree for storage, we are able to add yet another layer of security.
The data encoded in your app's QR code is not your credit or debit card information. It's a random token with no meaningful information in it. You can reset it at any time. It maps to a token on our servers which maps to yet another token in the Braintree Vault. Only the combination of these tokens (and two other factors of authentication) can initiate a transaction. This triple token system means that you carry no actual payment data around with you on a daily basis (as opposed to all that live payment data in your wallet right now), but rather keys to keys to keys to unlock payment data.
If you have any other questions about how we protect the security of your payment information, please feel free to review some of our security measures detailed here: https://www.thelevelup.com/security.
Comments
Please sign in to leave a comment.