Secure Data
Fundraising security and transparency come first at Classy. Led by GoFundMe’s Chief Information Security Officer, there is a dedicated security team focused on ensuring Classy protects your organization, supporters, and data. Our systems have been evaluated by independent auditors and passed the highest security protocols set by PCI DDS to provide a safe and trusted fundraising platform so you can focus on fulfilling your mission.
Technologies and Compliance Certifications
Technology and Compliance Certification
Security is ever-evolving, so are we
- PCI DSS Level 1 Compliance
- AWS Virtual Private Cloud
- 24x7x365 Security Scanning and Monitoring
- Network Level Vulnerability Scanning
- Consistent Review of Rules Flagging Suspicious Activity
- IDS, IPS, WAF, and DDOS protection in place
- Monthly and Quarterly Audit Reviews by Classy’s Information Security Team
Secure Computing
We build security into the foundation of all our products and services to ensure our platform is secure by design.
- Load Balancer Based Compute Isolations
- Role-based Access Control
- Secure Logging
- Static and Dynamic Code Analysis
- OWASP Secure Coding Principles
Secure Data Management
Using tokenization, encryption, and key management, Classy never stores credit card information and always protects other sensitive data.
- AES 256-bit Encryption
- TLS v1.2 Protocol Requirement