Need to report a security vulnerability?
Please contact us firstname.lastname@example.org for information about our responsible disclosure process and to submit a vulnerability report.
All private data exchanged with MyImmiTracker is always transmitted over SSL (which is why your home page is served over HTTPS, for instance)
We protect your login from brute force attacks with rate limiting. All passwords are filtered from all our logs and are one-way encrypted in the database usingbcrypt. Login information is always sent over SSL.
Credit card safety
When you sign up for a paid account on MyImmiTracker, we do not store any of your card information on our servers. It's handed off to Stripe or PayPal, a company dedicated to storing your sensitive data on PCI-Compliant servers.
Have a question, concern, or comment about MyImmiTracker security? Please contact MyImmiTracker Support.