Secure cloud bookings
We utilize some of the most advanced technology available for Internet security. Your Checkfront application is hosted in a URL unique to your business in a segregated database dedicated to your account. Web services are protected with an industry standard 256 Bit SSL encrypted certificate.
Our systems are PCI DSS compliant and our compliance is validated by Trustwave.
It’s Your Data – We Keep it Secure
You own all data associated with your account, including transactions and customer records. We provide the service and maintain the integrity of your data. We never purge records during the life of your account. You may export all or part of your data any time in a variety of portable formats, including: XML, CSV and MS Excel®.
We run automatic encrypted backups to ensure your online data is safe and protected.
- We host and maintain your back-office application, and take care of future patches and updates for you.
- We are constantly improving our features, provide free updates, and regularly add new features at no extra charge.
- Enable Two-Factor Authentication for added security.
Please see our our Privacy Policy for more information.
Remote Vulnerability Scanning
Checkfront undergoes regular PCI Compliance scans to ensure we are PCI DSS compliant. These scans check for known vulnerabilities and common security holes in server configurations. They are performed by our security compliance provider, Trustwave.
Fast, High-Availability Hosting
To deliver maximum reliability and performance, Checkfront operates on a distributed network with data centers in five geographically diverse locations, including the United States, United Kingdom and Asia. Our data centers are high-speed, redundantly powered state-of-the-art facilities.
Sub Processors
- Google Inc. – Cloud Services Platform
- Zendesk – Cloud Based Customer Support Services
- Postmark – Cloud Based Email Notification
- Pendo.io – Third party analytics provider
- Salesforce – Lead Generation
- Hubspot – Site Analytics and customer interactions(email)
- Zapier – Cloud Based Task Automation software
- PandaDoc – Cloud Based Document Automation software
- Full Story – Cloud Based Visual Behaviour tracking
- Outreach – Sales Engagement (emails, meetings and notes)
- CloudApp – Screen capture and video recording application
- Zoominfo – Data Enrichment
- Qualaroo – User research & customer feedback software
PCI Policy
Checkfront is PCI DSS compliant. This compliance extends to all accounts powered by Checkfront and transactions that are processed through our system.
The PCI Data Security Standard (PCI DSS) was created by the major credit card companies to ensure the adoption of consistent security measures by all merchants.
There are six categories of PCI standards that must be met in order for a merchant to be deemed compliant:
- Maintain a Secure Network
- Maintain a Vulnerability Management Program
- Regularly Monitor and Test Networks
- Protect Cardholder Data
- Implement Strong Access Control Measures
- Maintain an Information Security Policy
When payments are processed via credit card, Checkfront uses third-party vendors that are fully PCI DSS compliant. At no point does Checkfront store or process your credit card information.
Please see our Data Protection, Ownership & Confidentiality in our Terms of Service, or contact us for information on our PCI policy and compliance.