Our Mission
To build elegant, usable software that protects your privacy and security. You deserve the best. Protect yourself online without sacrificing convenience and ease of use.
Privacy is the first payments product that keeps your personal information private, while being even more convenient than using a regular credit card online.
Security
The security of your personal information and data is critical to everything that we do here at Privacy. Here are some relevant details about the safeguards we have built into our technology stack.
Overview
- Our team includes people from some of the top payments and security companies (American Express, Expensify, Palantir), and we’re bringing that expertise to Privacy.
- Privacy is PCI-DSS compliant. We are held to the same rigorous security standards as your bank.
Data At Rest / Infrastructure
- Passwords are hashed using PBKDF2 with 100k iterations and salted to make rainbow table attacks more difficult.
- Sensitive information is encrypted using split-key encryption with partial keys held by separate employees.
- Customer data is stored on single-tenant hardware in private networks in at least three separate geographic locations and is inaccessible from the outside world.
Data In Transit
- Data is never sent in plaintext. All web traffic is sent over Transport Layer Security (TLS) HSTS for privacy and security.
- Inter-data center communication protected via by Internet Protocol Security (IPsec) with AES-256.
Policies
- Aggressive biannual encryption key rotation schedule.
- Servers are firewalled and regularly updated with the latest security patches.
- We follow OWASP best practices and all code is peer-reviewed before deployment.
- For access controls, we follow principles of least privilege.
Our Team
We are a team of creators with extensive financial technology, regulatory, and product expertise. Backed by excellent investors, we are deeply committed to protecting your financial privacy and security.