At Steer, we take security very seriously. That's why we've implemented a security system with the following measures:
All user data (including information you send like usernames/passwords) is sent over HTTPS secure channels.
Our website, platform and databases are hosted and managed within Heroku’s secure data centers. Heroku continually manages risk and undergoes recurring assessments to ensure compliance with industry standards. You can find more information on Heroku security practices at Heroku Security.
All user data is automatically backed up on Heroku servers with the capability to provide point-in-time recovery down to the second. Additionally, we create automatic backups on a daily basis.
We use Paddle as our credit card processor. We do not store your card number or CVC code after we submit it to Paddle. Paddle does store and protects this data. They are a major credit card processor who specializes in handling this information. You can find out more about Paddle and their PCI compliance at their website.
We verify account access through email and password-based authentication. We always store individuals passwords encrypted with salts, using the most secure, well-tested, and up-to-date hashing schemes to add an extra layer of protection to your account.