Trust Center

Security you can count on.

Security isn't a feature — it's our foundation. Here's exactly how we protect your data and your customers' trust.

PCI-DSS via StripeAES-256 EncryptedTLS 1.3GDPR ReadyCCPA Ready
Security Pillars

How we protect your data

Active

Encryption at Rest

All customer data and form submissions are encrypted with AES-256. Encryption keys are managed via hardware security modules (HSM).

Active

TLS 1.3 in Transit

All data in transit is protected by TLS 1.3. HTTP is redirected to HTTPS site-wide. HSTS headers enforced.

Active

PCI-DSS Compliance

Payment processing is handled exclusively through Stripe. MariyamTech never stores, processes, or transmits raw card data.

Active

GDPR Data Handling

Users have the right to access, modify, and delete their data. Consent is explicitly recorded and logged per submission.

Active

Infrastructure

Hosted on US-based cloud infrastructure with automatic failover, DDoS protection, and 99.99% uptime SLA.

In Progress

SOC-2 Readiness

We follow SOC-2 Type II controls for security, availability, and confidentiality across all internal processes.

Compliance Status

What's implemented today

AES-256 encryption at restImplemented
TLS 1.3 for all connectionsImplemented
PCI-DSS via StripeImplemented
GDPR data handlingImplemented
CCPA consumer rightsImplemented
HSTS headers enforcedImplemented
DDoS protection activeImplemented
SOC-2 Type II auditIn Progress
ISO 27001 certificationIn Progress
Vulnerability Disclosure

Found a security issue?

If you discover a security vulnerability in any MariyamTech product or infrastructure, please disclose it responsibly by emailing us directly. We investigate all reports within 48 hours.

Report a Vulnerability

Please do not disclose vulnerabilities publicly before we've had a chance to address them.

— Get started today —

Trust is built in.

Every MariyamTech product ships with security by default — not as an add-on.

✓ SOC-2 Ready  ·  ✓ GDPR Compliant  ·  ✓ PCI-DSS via Stripe  ·  ✓ TLS 1.3