Secure Fundraising Protection for Nonprofits

Security so good, you'll never know it's there.

A key with the Funraise smiley logo is illuminated while floating around abstract, confidential data.

As an organization, your data is one of your most valuable assetsโ€”weโ€™re committed to helping you protect it. We prioritize the security of your data and payments through world-class infrastructure partners and independent certification processes.

PCI Compliance

Protecting your most valuable asset: Data

Funraise is a PCI Compliant Service Provider and tokenizes all credit card information in a PCI Level 1 certified tokenization vault. Funraise is partnered with Sikich as our QSA and independent security assessor.

A key with the Funraise smiley logo is illuminated while floating around abstract, confidential data.
The Funraise smiley is surrounded by gray metal rings, like a secure combination lock. Data notes appear to float around, calling out added security features.
Data Security

Modern ciphers, hashing algorithms, and hot standby

Funraise is deployed to Heroku.com, a Salesforce.com company. Herokuโ€™s physical infrastructure is hosted and managed within Amazonโ€™s secure data centers and utilizes the Amazon Web Service (AWS) technology.

Additionally, all Funraise data is managed in a premium Postgres cluster with hot standby which benefits from geo-redundancy, point-in-time recovery, priority service restoration on disruptions and automatic encryption-at-rest of all data written to disk.

Thank you! Your submission has been received!
Thank you! Your submission has been received!
Thank you! Your submission has been received!
Thank you! Your submission has been received!
Thank you! Your submission has been received!
Thank you! Your submission has been received!
Thank you! Your submission has been received!
Thank you! Your submission has been received!
Thank you! Your submission has been received!
Thank you! Your submission has been received!
Thank you! Your submission has been received!
Thank you! Your submission has been received!
Thank you! Your submission has been received!
Thank you! Your submission has been received!
Thank you! Your submission has been received!
Thank you! Your submission has been received!
Error
  • Please complete all fields.
  • Use your work email address that's connected to your organization.
DDoS Mitigation

Slaying dragons and shielding nonprofits

For DDoS mitigation, Funraise is protected by AWS Shield, a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS, so there is no need to engage Funraise Support to benefit from DDoS protection.

AWS logo
A bar of light scans over the Funraise logo icon, as if scanning for software bugs and potential vulnerabilities.
OWASP

A peer review of our tech specs

Funraise coding guidelines are integrated with OWASP best practices. Funraise also employs a dedicated QA team as well as independent security specialists which test our software for bugs and potential vulnerabilities.

Fraud

Payment fraud, the internet's bad actor

Funraise employs internal and external protocols to mitigate the risk of online payment fraud:

  • Anti-Fraud Machine Learning Models
  • WAF Request Filtering
  • reCAPTCHA
  • Gateway level fraud features such as AVS, CVV Validation, and Risk Scoring
  • Human monitoring
A locked blue padlock featuring the Funraise smiley logo

No items found.
No items found.
No items found.
No items found.
No items found.
No items found.
No items found.
No items found.
No items found.

Stay in the nonprofit loop.

Get weekly updates on tips, trends, and best practices to help power your nonprofit. #nonprofitz4lyfe

Oops! Something went wrong while submitting the form.