At BubbleGumLou we take the security of our customers very seriously and supply the utmost protection that we can offer.

We use Stripe as our trusted payment processor.

Stripe's commitment to security is unparalleled. Stripe is a PCI-certified payment processor, audited by a certified auditor, ensuring the highest level of certification. Stripe facilitates PCI compliance with automated features and provides a comprehensive guide. Their SOC 1 and SOC 2 compliance programs undergo rigorous annual audits, and Stripe adheres to the EMVCo and NIST Cybersecurity Framework standards. Our privacy and data protection practices comply with all regulations. Implementing HTTPS and HSTS for secure connections, proactively monitoring for API key exposure, and maintaining robust infrastructure safeguards. Multi-factor authentication, access restrictions, and auditing enhance user security. Stripes' dedication to proactive internet monitoring, infrastructure security, and corporate technology safeguards guarantees the protection of sensitive data. From dedicated card technology to stringent access control, stripes security measures encompass every facet of their operations. Security is ingrained in Stripe's corporate culture, with comprehensive employee training, access control management, and a vigilant approach to vulnerability disclosure through our bug bounty program on HackerOne. Your security is BubbleGumLou's and Stripe's top priority.