Skip to main content

Security

Our platform and infrastructure operates on top of one of the world’s most secure and reliable cloud service providers. Additionally, our platform and infrastructure are continuously monitored to protect your data and make it available when you need it.

All data is stored in a database not accessible to the internet and card data are tokenized and encrypted at rest.

Secure Connections#

We use HSTS to force browsers to use HTTPS protocol when interacting with our domain. AQWIRE is included in the HSTS preload list of all major web browsers. Additionally, we also have a running Web Application Firewall (WAF) to actively block intrusions and secure our web applications powered by CloudFlare.

PCI-DSS Compliant#

AQWIRE is a PCI Service Provider Level 2 compliant payment platform. We are partnered with Very Good Security, a Visa-backed security company for managed data security services including tokenization as well as secure and compliant routing and storage of sensitive cardholder data.

Keeping your data safe and secure is a huge responsibility and a top priority for us. If you believe you've found a security vulnerability in AQWIRE's service, please contact us immediately at the email address security@qwikwire.com.

Rate Limiting#

In order to ensure the quality of service to all customers and help prevent runaway scripts from depleting customer quotas, we have rate limiting enabled in our live environment.

Limits#

Limits are only set to inbound traffic, limited by unique IP and is only applied to live environments.

Inbound Traffic

Live - 5,000 requests per 1 minute.

Error#

If you've reached your limit, all following requests will be interrupted with HTTP status code 429 and will reset after a minute.

Edit this page