Thousands of organizations big and small trust Giftbit to power their digital gift card and prepaid card incentive programs. We safeguard every transaction and all data with enterprise-grade security, so you can confidently scale your program and focus on results.
Security is how we build, not a bolt-on.
— Bryan Dwyer, CPO | Giftbit
We protect your data at every level, starting with how our team accesses and manages your information.
🎓 Employee training & access controls: Regular security training, device management, and least-privilege principles ensure your data is only accessible to those who need it.Giftbit uses Privacy by Design approach to ensure privacy is incorporated into our technology and system by default.
With proactive monitoring, secure architecture and enhanced internal controls, we secure your funds and data with multiple layers of protection. This includes end-to-end encryption for data in transit and at rest, plus segregated Testbed and Production environments.
Because we follow the principle of least privilege (PoLP), your data is only accessible by employees whose job functions require it. We protect your data from unauthorized access and safeguard the collection and use of your information.
/ink-principle/check_ink-principle.png?width=50&height=50&name=check_ink-principle.png)
SOC 2 (Type II) compliant processor
PCI SAQ-D compliant processor
GDPR compliant processor
Encrypted financial data processor via Advanced Encryption Standard (AES-256)
ISO C Visa® service provider
🛡️ Sending secure gift cards and prepaid cards starts with secure funding.
We automatically freeze suspicious credit card transactions when you fund your account, then monitor your orders with velocity controls that catch unusual spending patterns.
And you can freeze or cancel unclaimed rewards at any time.
Giftbit uses a layered approach to Personally Identifiable Information (PII) to meet the strict regulatory standards required for academic research payouts and other sensitive use cases.
Sensitive fields receive additional encryption on top of our standard protections.
Even if someone gained database access, PII would remain encrypted and inaccessible without a separate decryption key.
We protect your data with end-to-end encryption and 24/7 monitoring, backed by AWS infrastructure with built-in redundancy and strong defaults.
We minimize data movement, use high-entropy identifiers that resist brute force attacks, and run threat assessments on everything we build.
Encryption: All data encrypted in transit (TLS 1.2+) and at rest (AES-256). Always.
Authentication: MFA via account Two Factor Authentication (2FA), and role-based access controls.
Monitoring: 24/7 intrusion detection and incident response protocols.
Environment Segregation: Testbed and production environments are fully separated to maintain data integrity.
/Logo%20no%20tagline%2c%20small.webp?width=100&height=37&name=Logo%20no%20tagline%2c%20small.webp){kind=small}
/Logo%20no%20tagline%2c%20small.webp?width=100&height=38&name=Logo%20no%20tagline%2c%20small.webp){kind=small}
-Oct-15-2024-05-01-06-0240-PM.webp?width=560&height=400&name=NEW%20OPT%20Transparent%20for%20hero%20(9)-Oct-15-2024-05-01-06-0240-PM.webp)