All access to the Minter.io website is restricted to HTTPS encrypted connections.
User passwords are secured with BCrypt. They are never stored in the database in plaintext and are not readable by staff. Passwords do provide access to the Minter.io website, however, and it is the responsibility of the end user to protect his password with care.
All data retrieval from Instagram and Facebook is done with your unique access token over a secure connection with Instagram’s and Facebook’s API.
All connections to our database and Subprocessors are encrypted using secure sockets layer (SSL) and/or transport layer security (TLS).
Access to user data by Minter.io employees is limited to an as-needed basis (e.g., to resolve customer issues). When such access is required, only personnel with a direct need will access the data, and such access will be limited as much as possible.
When you purchase a paid Minter.io subscription, your credit card and PayPal data is not transmitted through nor stored on our systems. Instead, we depend on Stripe and 2Checkout, online payment processors. Stripe and 2Checkout are certified to PCI Service Provider Level 1, the most stringent level of certification available. Stripe’s security information is available at https://stripe.com/help/security. 2Checkout’s security information is available at https://www.2checkout.com/policies/gdpr-compliance-statement.