Security is one of the biggest considerations in everything we do. If you have any questions, or encounter any issues, please contact us at firstname.lastname@example.org.
The service we use to take payments has been audited by a PCI-certified auditor, and is certified to PCI Service Provider Level 1. This is the most stringent level of certification available.
SSL and HSTS
KidneyBuzz.com uses a company that forces HTTPS for all services, including our public website. They regularly audit the details of our implementation: the certificates served, the certificate authorities used, and the ciphers we support.
All card numbers are encrypted on disk with AES-256. Decryption keys are stored on separate machines. None of our internal servers and daemons are able to obtain plaintext card numbers; instead, they can just request that cards be sent to a service provider on a static whitelist. KidneyBuzz.com's payment process infrastructure for storing, decrypting, and transmitting card numbers runs in separate hosting infrastructure, and doesn't share any credentials with primary services (API, website, etc.).
All physical and downloadable product sales are final. We do not offer refunds, once a physical or downloadable product is ordered. This ensures the maximum security for your credit card as our team will not reaccess information. This also will avoid any additional fees for the refund process which may be a significant percentage of the purchase price.
I can best sum it up like this: All of your personal Credit Card information is safe with KidneyBuzz.com's trusted system. If you have any questions, feel free to email email@example.com.