Security

At Waiterly POS, we take the security of your data and payment information very seriously. We implement industry-standard security measures to protect your business and customer information.

This page outlines our security practices and the measures we take to ensure your data remains safe and secure.

Secure Communication (SSL/TLS)

All communication between your browser and our servers is encrypted using SSL/TLS (Secure Sockets Layer/Transport Layer Security) protocols. This ensures that all data transmitted, including login credentials, business information, and payment details, is protected from unauthorized access. You can verify this security by looking for the padlock icon in your browser's address bar when using our service.

Payment Processing Security

We use Stripe, a PCI Service Provider Level 1 certified payment processor, to handle all payment transactions. This is the most stringent level of certification available in the payments industry. Your payment information is never stored on our servers - it is securely transmitted directly to Stripe's secure servers.

PCI DSS Compliance: Stripe maintains the highest level of PCI compliance (Level 1) and handles all sensitive payment data in accordance with PCI DSS standards. This means your customers' payment information is processed using the most secure methods available in the industry.

Our payment forms and all pages handling sensitive information use HTTPS encryption to ensure data is transmitted securely. We implement additional security measures to prevent card testing and other fraudulent activities.

User Authentication

We use Clerk for user authentication and account management. Clerk provides enterprise-grade security features including:

  • Multi-factor authentication (MFA) support
  • Secure session management
  • Brute force attack protection
  • Account lockout mechanisms
  • Real-time security monitoring
  • OAuth integration with major providers

Clerk maintains a comprehensive security policy and implements industry best practices for user authentication. You can learn more about Clerk's security measures at their official security documentation. Learn more about Clerk's security .

Data Protection

We implement multiple layers of security to protect your business data:

  • Encrypted data storage using industry-standard encryption algorithms
  • Regular security audits and penetration testing
  • Secure backup procedures with encrypted backups
  • Access controls and role-based permissions
  • Regular security updates and patches
  • 24/7 monitoring for suspicious activities

Compliance and Standards

We adhere to industry best practices and security standards:

  • PCI DSS compliance through our payment processor
  • GDPR compliance for European users
  • Regular security assessments
  • Employee security training and background checks
  • Incident response procedures

Security Incidents

In the unlikely event of a security incident, we have established procedures to:

  • Immediately assess and contain the incident
  • Notify affected users within 72 hours
  • Work with security experts to resolve the issue
  • Implement additional security measures as needed
  • Provide transparent communication about the incident

Security Best Practices for Users

To help maintain the security of your account, we recommend:

  • Use strong, unique passwords for your account
  • Enable multi-factor authentication when available
  • Keep your login credentials confidential
  • Log out when using shared computers
  • Regularly review your account activity
  • Report any suspicious activity immediately

Security Contact

If you have any security concerns or questions, please contact us immediately:

Email: security@waiterlypos.com

For urgent security issues, please include 'SECURITY URGENT' in the subject line.

Last Updated: July 2, 2025