We’ve had a few questions from clients about the recent Heartbleed Bug episode and I just wanted to write a quick post to outline CR Language’s exposure and how it impacts students that pay online.
We take security very seriously and for this reason, CR Languages does not store or collect any credit card or financial information from clients. We rely on the most trusted names in the business to handle all financial transactions knowing that they have the infrastructure, skills, and experience required to keep information safe and secure.
We utilize several different services to process credit card transactions. For online invoicing, we use an accounting software called Xero which processes credit card transaction through a merchant service called Stripe. Xero was not affected by the Heartbleed Bug, and while Stripe had limited vulnerability issues, they installed a patch for the bug within a few hours of learning of the vulnerability. You can find statements on both of their sites addressing the Heartbleed bug. Xero’s is here and Stripe’s is here.
Another online payment service that we use is Paypal. Paypal was also unaffected by the Heartbleed bug. You can see their statement here.
Credit card payments accepted in our office are processed through Square for iPhone. I reached out to Square personally, and was informed that they, too were unaffected by the issue.
I hope that the above information serves to answer any questions and address any concerns. For those who feel uncomfortable making online payments, I would like to remind you that CR Languages also accepts personal checks. If you have any other questions or concerns, please feel free to contact us directly.