When you subscribe to a paid Mopapp plan, we need to ask your credit card information to set-up an automatic monthly or annual billing. Data transmission from your browser to our server is made secure through the https protocol and SSL, which do a 128-bit encryption of all data being exchanged.

We don't however directly store your credit card data in our database, but we rather pass it to our partner in charge of handling the automatic billing. The payment gateway we use is a worldwide leader in payment processing solutions, and it's used by a lot of renowned online services.

Is my billing data secure?
Yes. Your credit card info is transmitted to the payment gateway with a 128-bit encryption, and the gateway stores your billing information in PCI compliant fashion. 

Ok but, what does it mean to be PCI Compliant?

The Payment Card Data Security Standard, also known as PCI DSS or just PCI Compliance, was created in response to an increasing number of credit card data breaches. The PCI Data Security Standard consists of 12 security requirements (see below) that consist of roughly 250 individual controls. The PCI Security Standards Council provides 4 different versions of the Self Assessment Questionnaire (SAQ), which is a validation tool for merchants to evaluate their compliance status.

PCI Compliance applies to any merchant that processes, transmits or processes credit card information. It is a mandatory requirement and all deadlines have passed. The Standard has continued to evolve to address the varied needs of business types and new security threats.

The founding members of the PCI Security Council, Visa, MasterCard, American Express, Discover, and JCB, have offered both carrots and sticks to merchants to incentive compliance. As a carrot, if merchants are compliant at the time of a breach, they receive Safe Harbor from fines. As a stick, if a merchant is non-compliant at the time of a breach, merchants can be fined up to $500,000 per incident and face remediation costs between $90 and $302 per card.