When you pay with Bolt, your financial information is stored in a PCI-Compliant vault. Merchants do not have access to sensitive card information.

Bolt's intelligent anti-fraud technology protects merchants from fraudulent transactions throughout the entire payment lifecycle. Bolt handles PCI-Compliance so merchants don't have to.

As a payments provider, Bolt complies with the PCI-DSS standard. The Payment Card Industry Data Security Standard (PCI DSS) applies to companies of any size that accept credit card payments. We maintain PCI compliance through continual internal auditing, scanning, and external auditing.

Bolt believes strongly in always-on TLS and maintaining data encryption while at rest and in motion. We strive to use best practices to encrypt data and regularly test our endpoints for compliance and security.

We welcome the responsible disclosure of security issues on our site. If you are a security researcher and would like to report a vulnerability that you have discovered, please email security@bolt.com.