Popup Security

‍

This page gives an overview of the security procedures we follow building Popup.

1. Payment

We process payments with Stripe and other local payment providers, all of which are PCI-compliant service providers certified with PCI DSS Level 1 compliance.

Popup does not process or store any payment card information.

‍

2. Privacy

Popup does not sell your personal data. We only share data with Creators and service providers as needed to operate the Service.

You can read more about how we handle your data at popup.fm/privacy-policy

‍

3. Infrastructure

We use Google Cloud Platform (GCP) to host our technical infrastructure and servers.

Google Cloud maintains industry-leading compliance certifications, including ISO/IEC 27001 and PCI DSS.

‍

4. Development Process

We employ both internal and external testing and validation of our development process.

Our application and code is scanned for vulnerabilities.

All engineers receive training and guidance regarding industry best practices for security.

‍

5. Encryption

Data is encrypted in transit and at rest.

We use TLS/SSL encryption across the popup.fm site and API.

‍

6. Incident Response

We have systems monitoring the performance and reliability of our servers 24x7.

Our team is able to respond to incidents in a timely manner.

‍

7. SOC Compliance

We have begun the process of SOC Compliance audit.

We will update this page when the audit has been completed.

‍

8. Contact Us

If you have any questions, concerns, or requests please contact us at:

Email: info@popup.fm

Company: Popup Moments Inc.

Address: 108 W. 13th Street, Suite 100, Wilmington, DE 19801, USA

‍

© Popup Moments Inc. All rights reserved.

‍