Your data is protected
We take security seriously. Your files, payments, and personal information are protected with robust security measures and industry best practices.
- TLS/SSL encryption for all connections
- Secure cloud file storage
- Secure database hosting
- Server-side access control
- File type validation & sanitization
- Malicious file blocking
- Path traversal prevention
- Security headers (HSTS, CSP, XSS protection)
- Rate limiting & DoS protection
- Request size limits
- Input validation and sanitization
- Stripe is PCI DSS Level 1 compliant
- No card data stored on our servers
- Secure payment processing
- Secure authentication via Clerk
- Session management
- Role-based access control
- Security audit logging
- Request ID tracking
- Security event monitoring
- Audit trail for compliance
What We Collect
We only collect the information necessary to provide our service:
- Account information (email, name)
- Payment information (processed securely by Stripe)
- Files you upload (stored securely)
- Usage analytics (anonymized)
How We Protect It
- TLS/SSL encryption for all data in transit
- Access controls and authentication required
- Secure storage and hosting
- We never sell your data to third parties
For more details, please read our Privacy Policy.
Payment Processing
All payments are processed through Stripe, which is PCI DSS Level 1 certified, the highest level of certification in the payments industry.
Data Protection
We follow data protection best practices and respect user privacy. You have the right to access, modify, or delete your data at any time.
If you discover a security vulnerability, please email us at support@peyvo.app with the subject line "Security Vulnerability". We take all reports seriously and will respond promptly.
Please do not publicly disclose vulnerabilities until we've had a chance to address them.