Trust & security

Security you can
explain to your board.

Your community's gifts and data deserve more than a promise. Here is exactly how Givana keeps both safe — in plain language.

Your bank, not ours
Gifts settle to your account.
PCI-DSS
Card data never touches us.
Encrypted
In transit & at rest.
Reconciled
Every gift confirmed, not guessed.
Where the money goes

Givana never holds your funds.

Donor
Pays with their card
Processor
Charges & settles the card
Your community bank
Receives the payout

Money moves from the donor through the payment processor straight into your community's own bank account. Givana sits alongside the flow to record and reconcile it — we never take custody of your gifts.

How we protect it

Four things we never compromise

Card data

We never see card numbers

Payment details are entered into the PCI-certified processor's secure fields and tokenized. Card numbers never reach Givana's servers — there's nothing sensitive for us to lose.

Truth

Reconciled from settled payments

Every gift is confirmed by a signed webhook from the processor when the money actually settles — not by a hopeful browser redirect. Your records reflect what truly arrived.

Access

Role-based access & audit

Invite your team with the right level of access — view-only for counters, full control for admins. Sensitive actions are logged so you always know who did what.

Ownership

Your data stays yours

Export your donations, donors and statements at any time. No lock-in, no holding your records hostage. If you ever leave, you take everything with you.

Built on Stripe

Payments are processed by Stripe, a PCI Service Provider Level 1 processor trusted by millions of businesses worldwide. Each community connects its own Stripe account during setup, so funds and compliance sit with you — Givana orchestrates the giving experience and the records on top.

Engineering practices

The quiet work underneath

Encryption everywhereTLS in transit and encryption at rest for all stored data.
Tenant isolationEach community's data is scoped and isolated — one community can never see another's.
Idempotent, verified webhooksSigned events are verified and de-duplicated, so a gift is never double-counted or lost.
Least-privilege & secrets hygieneKeys are scoped and rotated; access follows the principle of least privilege.
Backups & recoveryRegular backups with a tested path to restore — your records survive a bad day.

Trust, by design.

Have a security questionnaire from your board? Send it our way.