MyShul, LLC takes the security of payment information seriously. We do not store, process, or transmit full credit card numbers or sensitive payment data on our servers.
All payment transactions conducted through the MyShul platform are processed entirely by Stripe, a leading third-party payment processor that is fully certified as PCI-DSS Level 1 compliant, the highest level of certification available in the payment card industry.
Payment information is entered directly into Stripe’s secure, encrypted payment environment
MyShul never has access to or visibility into full card numbers or sensitive authentication data
Stripe is responsible for handling all card data in accordance with PCI-DSS requirements
MyShul receives only limited, non-sensitive transaction details necessary for accounting, invoicing, and reconciliation
Because MyShul does not store, process, or transmit cardholder data directly, our PCI compliance obligations are limited to ensuring that:
We use a PCI-DSS compliant payment processor
Our systems follow industry-standard security practices
Access to administrative systems is restricted and monitored
This approach significantly reduces risk and helps ensure the protection of donor and payment information.
In addition to relying on Stripe’s PCI-compliant infrastructure, MyShul implements:
Encrypted servers and secure hosting environments
Hashed and encrypted account credentials
Phone-based verification and account security controls
Restricted access to sensitive administrative features
For more information about Stripe’s security practices, please refer to Stripe’s official PCI documentation.
If you have questions regarding payment security or PCI compliance, please contact us at info@myshul.com.