A PCI-certified auditor has audited Stripe. We’re a certified PCI Service Provider Level 1. This is the most stringent level of certification available in the payments industry. To accomplish this, we use the best-in-class security tools and practices to maintain a high level of security at Stripe.
We regularly audit the details of our implementation, including the certificates we serve, the certificate authorities we use, and the ciphers we support. We use HSTS to ensure that browsers interact with Stripe only over HTTPS. Stripe is also on the HSTS preloaded lists for both Google Chrome and Mozilla Firefox.
All card numbers are encrypted at rest with AES-256. Decryption keys are stored on separate machines. None of Stripe’s internal servers and daemons can obtain plain text card numbers but can request that cards are sent to a service provider on a static allowlist. Stripe’s infrastructure for storing, decrypting, and transmitting card numbers runs in a separate hosting environment, and doesn’t share any credentials with Stripe’s primary services including our API and website.
Why use PayPal?
Your information is secured.
When you pay with PayPal, your financial information is never shared with the seller, and you can pay using only your email address and password.
Security around the clock.
PayPal monitors every transaction 24/7 to help prevent against fraud, email phishing and identity theft. Every transaction is heavily guarded behind their next-level encryption.
If something seems suspicious, their dedicated team of security specialists is immediately on it to help protect you from fraudulent transactions. And remember, PayPal will never ask for any sensitive information from you in an email.
You can be sure that your transaction is protected and secure when you use PayPal at the DrugTestKitUSA checkout.