Digipro 3D uses a third-party payment processing service. Credit card information is encrypted in your browser or mobile client and sent directly to this service. Credit card information is not transmitted to Digipro 3D’s servers and is not stored by Digipro 3D. Our payment processing service is PCI compliant and our use of their service preserves that PCI compliance.
Digipro 3D requires HTTPS for all services, including our public website and our community forum. We regularly audit the details of our implementation: the certificates we serve, the certificate authorities we use, and the cyphers we support. We use automated tools to test our live servers for susceptibility to new and existing SSL/TLS vulnerabilities. We use HSTS to ensure browsers interact with Digipro 3D only over HTTPS
All Digipro 3D documents are saved on encrypted storage with AES-256. All communication between our internal compute servers and the internal databases holding your Digipro 3D documents uses TLS v1.2. We block weak cypher suites and prioritize stronger ones for communication between your client and our service. We only utilize very strong cypher suites between our internal servers.
DigiPro 3D never stores customer passwords in the clear. We use strong, one-way, cryptographic hash functions so that even if our internal password storage is compromised, the original passwords cannot be recovered.