Security

Trust is thefoundation of loyalty.

Merchants trust us with customer contact details, purchase history, and reward balances. Here's how we protect that data at every layer.

Encryption in transit and at rest

All traffic between your devices, our scanner, and our servers is encrypted with TLS 1.2+. Customer and merchant data is encrypted at rest in our production databases, and wallet pass payloads are signed so they cannot be tampered with after issuance.

Access controls

Access to production systems is limited to engineers who need it for on-call or maintenance work, is logged, and requires multi-factor authentication. Within your Loyalstack account, role-based permissions let you control which staff can scan, redeem, issue refunds, or edit program settings.

Infrastructure & hosting

Loyalstack runs on reputable cloud infrastructure with automated backups, isolated environments for production and staging, and monitoring that alerts our team to unusual activity around the clock.

Payment data

Loyalstack never stores full payment card numbers. Billing is processed by a PCI-compliant payment provider, and we only retain the minimal metadata needed to manage your subscription.

Data retention & deletion

Merchants can export or delete their program data at any time from Settings → Data. When an account is closed, customer and transaction data is permanently deleted from production systems within 30 days, except where we're required to retain records for legal or tax purposes.

Reporting a vulnerability

If you believe you've found a security issue, email hello@loyalstack.co with details and steps to reproduce. We acknowledge reports within one business day and will keep you updated as we investigate and resolve confirmed issues.