Security
Payment Security
ForgeLogo LLC is committed to processing payments through secure, audited third-party payment infrastructure. This page summarizes the controls we and our payment partners maintain.
Last updated: May 14, 2026
1. PCI DSS Compliance
Card payments are processed by Stripe, Inc. (PCI DSS Level 1, the highest level of card-data security certification) and any other PCI DSS compliant providers we may enable. ForgeLogo systems do not receive, process or store full card numbers, CVC codes or sensitive authentication data.
2. Strong Customer Authentication (SCA / 3-D Secure)
Where applicable (e.g., EU/UK PSD2), the payment provider applies Strong Customer Authentication and 3-D Secure to authenticate the cardholder. This may include a one-time code, biometric verification or app approval from your bank.
3. Encryption in Transit
All traffic to and from the platform is protected with TLS encryption. Payment widgets are served from the payment provider's PCI-validated environment via secure iframes or hosted pages.
4. Fraud Prevention
- Provider-side risk scoring and fraud detection (e.g., Stripe Radar).
- Rate limiting, abuse monitoring and IP/device signals.
- Account and payment verification when needed.
- Manual review of suspicious activity.
5. Sanctions and Restricted Businesses
We do not provide Services to individuals or businesses subject to U.S. OFAC sanctions or in countries embargoed by the United States. We follow our payment partners' restricted business lists (e.g., Stripe's Restricted Businesses) and reserve the right to refuse or cancel transactions accordingly.
6. Disputes and Chargebacks
Cardholder disputes are processed through the payment provider. Chargeback misuse, friendly fraud or sanctions evasion may result in account suspension and revocation of credits/downloads.
7. Reporting Security Issues
If you discover a security vulnerability or suspect unauthorized account activity, please email hello@forgelogo.co with details. We appreciate responsible disclosure.