Safety and Security
Safety means Security AND Compliance
Having only one of the two leaves sensitive data vunerable to compromise. A simple donation form with a security certificate is not enough to satisfy the rigorous requirements put forth by the Credit Card Industry.
Security is the encryption and security certificates that protect data while in transit from the donor to the secure authentication and billing servers. PCI Compliance is what protects data from compromise after the transaction has been processed.
Qgiv is fully PCI Compliant and is a Level 1 Payment Processor. This means Qgiv is scanned quarterly and undergoes an on-site audit annualy by an Independent Qualified Security Assessor. This is the highest level of compliance, the most secure level of the PCI Data Security Standards.
You can view Qgiv's Quarterly Scan Report, Qgiv's Annual On-Site Audit Report and find out more information about our membership on the PCI Security Standards Council by contacting Qgiv.
When Qgiv is used by your organization, you minimize risk by never having access to account information. This means that donors can make secure payments to your organization, in your name and through your website, but your organization never sees the account information itself. Through this shielding of data your organization is never at risk of a security breach at your organization's level.
Qgiv protects your organization and protects each and every donor that makes a secure payment. For more information on each of the ways Qgiv guards your information, please consider reading the Safety section of Donation University.
How Qgiv's PCI Compliance protects your organization:
As a Level 1 Certified Payment Gateway, Qgiv is subject to the higest standard offered by the PCI Data Security Standards. Here are some of the benefits to having a Level 1 Provider securing your online donations:
- You Never Have Access to Sensitive Data — Qgiv does not provide your organization with Bank Account Information, Credit Card Numbers or any information that could be used to process an unauthorized transaction.
- Qgiv protects your organization online — Using Qgiv as your payment processing and donation gateway means your organization won't need to become PCI Compliant for online transactions. A significant savings of money and resources.
- Automatic Protection Upgrades — As the credit card industry changes and reacts to new forms of theft the PCI Standards will also change. Qgiv will always stay on top of the latest requirements and make changes as soon as they are available.
Qgiv's Secure Servers
Security, Redundancy, Compliance and Failsafes. The absolute protection of sensitive data with the higest level of reliability to ensure your organization can accept secure donations any hour of any day.
- SSL Certificates — The industry standard in protecting sensitive information as it crosses the internet. Backed by Verisign and Network Solutions, Qgiv's security certificates not only protect data but assure donors the site they are using is secure.
- Intrusion Detection — Hardware and software intrusion detection to notify Qgiv instantly if an attempt is made to access any part of the system without authorization.
- Redundancy — In the event that any peice of equipment fails an identical peice comes online automatically to ensure that Qgiv's services remain fully functional, even during a hardware failure.
- GiftShield™ — Qgiv's unique combination of security, PCI compliance, and server redundancy to ensure that every gift of funding made to your organization is safe and secure.
Qgiv's DataCenter:
Triple-Redundant Power Systems and Internet Service Providers ensure near constant uptime for your donation forms while the hardened security and construction provide physical protection for your data. Off-site backups and emergency fail-over redundancy to a second data center provide an extra level of assurance that Qgiv will always be ready, no matter what the circumstance.