Your data security is important to us, so these are the measures we are taking to protect it.
Account and data
We use the latest Transport Layer Security to keep your data encrypted during transit. Your login credentials are stored only on your device, never on our server, nor on the cloud. AES-256 encryption techniques, the same that is used by major banks and governments across the world, is what we use to keep your data safe. Even with the fastest supercomputer in the world, it will take millions of years to crack 256-bit AES encryption.
We do not store your full card number or details, but rather, have it managed via a Payment Card Industry Data Security Standard certified payment gateway. Any funds processed are safeguarded by multiple layers of security and compliance checks on its way to your recipient.
Our servers are situated in secure ISO27001 compliant data centers, and we run services from the Amazon Web Service cloud to protect from all web-based attacks and abuse. Availability is of paramount importance in the cloud and our servers are designed with an automatic response to any security risks. This means you will have stable access, and not have to worry about downtime when you need Reap the most.
Reap system has passed multiple security penetration tests, so that we eliminate any security vulnerabilities. We periodically conduct these tests even before any external attackers may have the chance to, and consistenly upgrade our systems to prevent new threats. We proactively take actions to protect your information and payments.
Keeping your payments safe
Reap is PCI certified, under the Payment Card Industry Data Security Standard - a global standard for ensuring data security followed by banks, and card networks like Visa, Mastercard and Unionpay. It means that we comply to these requirements for organisations to safely and securely accept, store, process, and transmit cardholder data during credit card transaction to prevent fraud and data breaches. Reap does not store your credit card details nor pass them through any servers. All your payments are secured and processed in a PCI-certified payment gateway.
Making sure only you have access and control
To safeguard your payments, we set up a 2-step verification for you to prevent any unauthorised transactions. Simply receive your verification code via phone, enter it during transactions, and you're good to go!
Frequently Asked Questions
We need to confirm your identity to ensure you are the rightful account owner and abiding by our terms of service. We do this to keep our platform safe for you, prevent financial crimes and comply with relevant anti-money laundering laws.