ClubReady takes the security of club, member, and CC information very seriously. ClubReady follows industry standard security process and protocols, including multiple layers of encryption, role based access control, and web application firewalls.
These process are fully externally audited as part of our SOC and PCI audits which include multiple penetration tests, monthly automated vulnerability scans, and manual internal and external vulnerability assessments. Additionally, we have outside providers who attempt to manually hack the product.
Specific to credit card data, ClubReady is fully PCI Level 1 audited and registered with the payment card brands. This is the highest level of payment card security audit. On the business and engineering process side of things, we are fully SOC1 Type 2 audited.
ClubReady’s PCI Attestation of Compliance, and SOC1 reports are available upon request.