Security
Trust is thefoundation of loyalty.
Merchants trust us with customer contact details, purchase history, and reward balances. Here's how we protect that data at every layer.
Encryption in transit and at rest
All traffic between your devices, our scanner, and our servers is encrypted with TLS 1.2+. Customer and merchant data is encrypted at rest in our production databases, and wallet pass payloads are signed so they cannot be tampered with after issuance.
Access controls
Access to production systems is limited to engineers who need it for on-call or maintenance work, is logged, and requires multi-factor authentication. Within your Loyalstack account, role-based permissions let you control which staff can scan, redeem, issue refunds, or edit program settings.
Infrastructure & hosting
Loyalstack runs on reputable cloud infrastructure with automated backups, isolated environments for production and staging, and monitoring that alerts our team to unusual activity around the clock.
Payment data
Loyalstack never stores full payment card numbers. Billing is processed by a PCI-compliant payment provider, and we only retain the minimal metadata needed to manage your subscription.
Data retention & deletion
Merchants can export or delete their program data at any time from Settings → Data. When an account is closed, customer and transaction data is permanently deleted from production systems within 30 days, except where we're required to retain records for legal or tax purposes.
Reporting a vulnerability
If you believe you've found a security issue, email hello@loyalstack.co with details and steps to reproduce. We acknowledge reports within one business day and will keep you updated as we investigate and resolve confirmed issues.