Security

PCI DSS

Fairbill has been audited by a PCI-certified auditor and our servers were certificated by an approved scanning vendor. Our current PCI DSS Certificate Number F3F8-5DF5-6BF8-7F51 is valid until 15 November 2015.

F3F8-5DF5-6BF8-7F51

PCI DSS Compliance Certificate

TLS

Fairbill forces HTTPS for all services, including our public website. We regularly audit the details of our implementation: the certificates we serve, the certificate authorities we use, and the ciphers we support. We use HSTS to ensure browsers interact with Fairbill only over HTTPS. fairbill.com is also on the HSTS preloaded lists for both Chrome and Firefox.
HTTP Strict Transport Security

Qualys SSL server test overall rate for fairbill.com is A+
(last tested with SSL Report v1.12.8)
Start now a SSL test on fairbill.com

The identity of this website has been verified by Gandi Standard SSL Certificate Authority

Fairbill implements SHA-2 signature algorithm. This is the fingerprint of our SSL Certificate:

SHA1: 9A 49 77 14 C9 7A 7A E0 84 8B 9C 33 1F EE 66 53 96 F6 CD 80
MD5: F5 3F C4 2F A8 51 2D 99 3C 1A DE E6 6E D9 82 47
(Not valid before 05.12.2014 and after 12.12.2017)

Encryption

All services that make use of sensitive data are secured with AES-256 encryption.

Fraud prevention form merchants

We develop dynamic risk models that help detecting, preventing and predicting fraudulent transactions before they affect your sales. The Payment Risk Checks implemented by us and our partners make sure that your payments are handled securely. Fairbill also mediates in conflicts to help merchants avoid losses yet maintaining the best customer satisfaction.

Contact

We rapidly investigate all reported security issues. If you believe you’ve discovered an issue in our security, please get in touch at security@fairbill.com

PGP

PGP-Key (valid for security@fairbill.com)

All security-related emails from Fairbill will be signed with this key. You may also use this key to encrypt your communications with Fairbill.

Once you’ve imported our key, you can verify the signature of emails we send you by running gpg –verify.

Key ID: 1C077E00BAB81B08
Key type: RSA
Key size: 4096
Fingerprint: A995 65F4 53EF C964 A1AE 62A9 1C07 7E00 BAB8 1B08
User ID: security@fairbill.com