PCI DSS Level 1
The highest level of payment card industry certification.
SOC 2 Type II
Independently audited security, availability, and confidentiality controls.
Encryption
AES-256 at rest, TLS 1.3 in transit. Tokenized card data, end-to-end.
SSO & SCIM
SAML SSO, SCIM provisioning, and role-based access control.
Audit logs
Every privileged action logged, exportable, and tamper-evident.
Continuous monitoring
24/7 SOC, automated vulnerability scanning, and bug bounty.
Report a vulnerability
We welcome responsible disclosure. Please email security@burratapos.ai.