The main features that contribute to its security are:
PCI DSS Compliance: The platform is independently audited and certified as Payment Card Industry Data Security Standard (PCI DSS) compliant. This is the required global standard for any entity that stores, processes, or transmits cardholder data.
Data Encryption: Cash Practice uses Secure Socket Layer (SSL) technology with encryption for the transmission of sensitive information, such as credit card data.
Data Privacy: Information entered by members, including patient personal data and payment details, is secured and remains private to the member. Cash Practice does not disclose, sell, or rent this data to third parties (outside of necessary processors like payment gateways).
Access Control and User Permissions: The system allows administrators to create staff accounts and define detailed user permissions. This enables control over actions like preventing certain staff members from processing refunds or voids, and limiting access to specific days and times.
Theft Prevention: The system has controls, such as only allowing refunds to be processed against the original transaction and using the same card, which helps prevent theft and loss.
Secure Cloud Storage: Electronic documents and digital signatures (for care plans and payment authorizations) are stored securely in the cloud.