With millions of redemptions and payments every month, we view customer program management, transaction protection, reward delivery, and security monitoring as mission critical.
Our employees are devoted to customer satisfaction and data protection. We know security starts with people having the right knowledge to make great decisions. It begins with regularly training people on security hygiene, protection of data, and compliance requirements.
We implement security configurations that are prescribed as correct and most effective for securing our systems and infrastructure. A few examples of the safeguards in place include an intrusion detection system, web application firewall, managed security groups, and multi-factor identity and access management.
Protecting the integrity, confidentiality, and availability of our customers’ data is critical to the success of their programs. That’s why any information transmitted between our customers’ endpoint, our hosting platforms or data centers, uses strong encryption.
We integrate security inspection in each stage of the software development lifecycle. We train our engineers in secure coding, perform threat modeling during design, implement security testing, and continuously perform attack surface analysis.
Our safeguards extend beyond preventative protections. We consider detection, response, and recovery as an integral part of our comprehensive security program. Our 24/7/365 detections include monitoring the logs of endpoint, infrastructure, or cloud services logs for anomalies events.