Security at BerriPay

Your security is our top priority. Learn how we protect your data and payments.

Bank-Level Encryption

All data is encrypted using AES-256 encryption, the same standard used by banks and financial institutions.

PCI DSS Compliant

We maintain the highest level of payment card industry compliance through our partnership with Stripe.

Multi-Factor Authentication

Protect your account with SMS or app-based two-factor authentication for an extra layer of security.

Fraud Detection

Advanced machine learning algorithms monitor transactions in real-time to detect and prevent fraudulent activity.

Payment Security

BerriPay uses Stripe's certified payment infrastructure, ensuring your transactions meet the highest security standards:

  • Card data never touches our servers - it goes directly to Stripe's secure infrastructure
  • Tokenization replaces sensitive card details with secure tokens
  • 3D Secure authentication for additional verification when needed
  • EMV chip and contactless payment support for secure in-person transactions

App Security

Secure Device Requirements

BerriPay requires devices with up-to-date operating systems and security patches. Jailbroken or rooted devices are not supported for your protection.

Secure Communication

All communication between the app and our servers uses TLS 1.3 encryption with certificate pinning to prevent man-in-the-middle attacks.

Account Protection

Best Practices for Your Security

  • • Use a strong, unique password for your BerriPay account
  • • Enable two-factor authentication
  • • Never share your login credentials or verification codes
  • • Keep your app and device operating system updated
  • • Review your transaction history regularly
  • • Report suspicious activity immediately

Compliance & Certifications

PCI DSS Level 1

Highest level of payment card industry compliance

SOC 2 Type II

Audited for security, availability, and confidentiality

GDPR Compliant

Meets EU data protection requirements

CCPA Compliant

Adheres to California privacy regulations

Security Incident Response

In the unlikely event of a security incident, we have comprehensive response procedures:

  1. Immediate containment and investigation
  2. Notification of affected users within 72 hours
  3. Cooperation with law enforcement when necessary
  4. Transparent communication about the incident and remediation steps
  5. Post-incident review and security improvements

Report Security Issues

Found a security vulnerability? We appreciate responsible disclosure. Please report security issues to:

security@berripay.com

We will acknowledge your report within 24 hours and work with you to understand and resolve the issue quickly.

Questions?

If you have any questions about our security practices, please contact our security team at security@berripay.com.