KeyMe retains as little information about its customers as possible and strictly does not store credit card information or other sensitive personal information. If an order requires delivery by mail, we purge the shipping address from our server as soon as the order is fulfilled. We don’t know where customers live and we don’t want to know.
KeyMe conducts regular third party security audits and penetration testing in multiple areas of the organization. These audits include performing security vulnerability scans, reviewing application and operating system access controls, interviewing staff, and analyzing physical access to systems.
KeyMe is compliant with the Payment Card Industry Data Security Standard (PCI DSS). We do not store credit card information — only an anonymized token from our payment processor, Stripe, enabling us to charge a customer’s credit card. Stripe (www.stripe.com) is one of the largest and most trusted credit card processors and is a leader in payment security. Stripe is certified to the most stringent level of security certifications available in the payments industry.