Which security compliances does inai comply with?

www’s security measures exceed industry standards for data protection and security. We are PCI DSS level-1, Soc II, GDPR, and ISO 27001 compliant.

Does inai collect non-payment data from Payment Service Providers (PSPs)?

www does not control what data is sent to us, as we simply receive a copy of all data sent to your PSPs. You have the option not to provide this information to your PSPs and therefore inai. If this information is given to your payment provider and we receive it, we won't store it in our databases. When you input the keys to connect with the payment service provider, we specifically ask for your consent to capture your users' non-payment data

What types of payment data are collected from Payment Service Providers (PSPs)?

www receives information on the payment provider, payment method, and associated details such as card brand, expiry date, and the first 6 or 8 digits of the card number, which can be used to provide BIN-level insights on your payment KPIs.

Does inai offer access to delete data on a per-customer basis?

If you need to delete information for individual customers - for example, if a user has churned and requests their data to be erased from your database and related services - inai provides an API to accommodate this. However, if you do not provide inai with this information, there will be no means for you to relay to our systems the unique identifier that permits a user record to be deleted.

Does Inai permanently delete data after contract termination?

In cases where you want inai to purge all the data, in the event of termination of the relationship with inai or for other reasons, the team at inai will permanently remove all records of the data from its servers

What are the locations of AWS centers?

Inai utilizes AWS data centers located in the United States, Europe and various other regions. This ensures that data storage complies with local laws, particularly regarding payment data. Customers are given the flexibility to select the exact location for hosting their Service Data as required.

Upon successful integration with PSPs, does Inai show observability for historical data?

The availability of historical data typically depends on the type of Payment Service Provider (PSP). If your chosen PSP provides historical data via APIs, we will provide observability. Adyen, for example, does not make historical data available via APIs.