Effective Date: Thursday May 8th, 2025
At Dishio, we prioritize the security and privacy of our customers. We understand the importance of safeguarding sensitive payment information, and as part of our commitment to data protection, we utilize Stripe, a leading payment processor, to securely handle all payment transactions on our platform.
1. Stripe: Payment Processor and Security
Dishio partners with Stripe, a PCI-DSS compliant payment processor, to handle all payment transactions. Stripe implements stringent security measures to ensure the safe processing and storage of payment data, including compliance with the Payment Card Industry Data Security Standard (PCI-DSS).
Key Security Measures with Stripe:
- Encryption: All payment data is encrypted using SSL encryption during transmission.
- Tokenization: Stripe uses tokenization to replace sensitive payment information with a unique identifier, meaning Dishio never stores sensitive payment information on our systems.
- Compliance: Stripe is PCI-DSS Level 1 certified, the highest level of certification available, which ensures that the system meets the most rigorous standards for protecting cardholder data.
- Fraud Prevention: Stripe uses advanced machine learning and behavioral analytics to detect and prevent fraudulent transactions.
For more information on Stripe’s security and compliance practices, refer to the official Stripe documentation:
Stripe’s Data Protection Agreement2. No Storage of Payment Information
Dishio does not store any credit card or sensitive payment information on our servers. Instead, Stripe is responsible for the storage and processing of all payment-related data, ensuring that your information is handled securely according to industry standards.
3. Transaction Currency
All transactions on the Dishio platform are processed in USD (United States Dollars). This means that payment information, including the total amount and associated fees, will be displayed and processed in USD.
4. Access Control and Security
To protect against unauthorized access to your payment data, Dishio implements the following:
- Access Controls: Only authorized personnel at Dishio have access to non-sensitive customer data, ensuring that sensitive payment information is never exposed.
- Regular Security Audits: We perform periodic audits and reviews of our security practices to ensure they meet the highest industry standards.
- Real-time Monitoring: Continuous monitoring of our systems helps detect and respond to potential vulnerabilities or security risks.
5. How We Use Your Payment Data
- Encryption: SSL encryption for data transmission.
- Access Controls: Restricted access to personal data to authorized personnel only.
- Monitoring: Regular security audits and real-time monitoring for vulnerabilities.
6. Data Retention
Dishio follows best practices for data retention. Payment information processed through Stripe is retained according to Stripe's retention policies, and once it is no longer needed for legal or business purposes, it is securely deleted or anonymized.
7. Privacy and Data Protection
Dishio is committed to ensuring the confidentiality and security of your personal data. As part of our commitment to privacy, we encourage you to review both our Privacy Policy and Stripe’s Privacy Policy for a more detailed explanation of how your data is handled.
8. Your Rights and Choices
You have the right to request access to your personal data, correct it, or request its deletion. For any concerns about your payment information or to exercise your rights, please contact
support@dishio.io.9. Updates to This Policy
We may update this document as necessary to reflect changes in security protocols or our relationship with Stripe. Any significant changes will be communicated via email or an updated privacy notice.
Contact Us
If you have any questions about this security policy or how we handle payment information, please contact us at:
Email:
support@dishio.io
