At GiftTool, we take security very seriously. That's why we use the latest encryption technology to make sure that credit card payments are secure before, during, and after every transaction.

Our encryption

We encode every transaction using 128-bit encryption. The customer's information is encrypted before it leaves their computer, throughout the transaction, and as it is stored in our database.

• Our system was designed around the latest in data encryption and security measures. These include SHA1 one way data encryption, inbound and outbound packet filtering, and permission base application level security.
  
  Our security strategy starts with three steps:
  
  Step 1 Isolation and protection with the strongest firewalls
  Step 2 Constant updates of systems, software, and antivirus definitions
  Step 3 Design and maintain application level security in all services
  Step 4 Review and address all the latest in security issues

• GiftTool uses the very best Secure Socket Layer Certificates of Thawte. Their certificate means that we are who we say we are and that your secure data transmissions will not be decrypted.
• GiftTool is enrolled in AmbironTrustWave's TrustKeeper Remote Compliance Program to confirm that GiftTool is compliant with the card associations' security requirements. The TrustKeeper Remote Compliance Program has been accepted by VISA USA as meeting its Cardholder Information Security Program (CISP), VISA Canada as meeting its Account Information Security (AIS) requirements, American Express as meeting its Data Security Standards (DSS), and MasterCard has determined that the TrustKeeper scanning solution is Site Data Protection compliant.
  
  GiftTool has been deemed compliant based upon information provided regarding our policies, procedures, and technical systems that store, process, or transmit cardholder data and the TrustKeeper scan of those systems. To maintain compliance, GiftTool is required to successfully pass ongoing quarterly vulnerability scans for these systems. In addition, GiftTool must continually identify and provide to AmbironTrustWave information regarding any new system that stores, processes, or transmits cardholder data, so that this system can be scanned as part of the compliance program. If you would like to receive a copy of the most recent certificate, please send your request to info@gifttool.com.