Security

DripData is built around a simple principle: your financial data is yours. It's kept tied to your account and protected at every step. Security isn't a feature we bolted on — it shapes how the product is built. Here's what that means in practice.

Your data stays with you

Your portfolio, holdings, and activity are tied to your account and are not visible to other users. We design our systems to keep your information protected.

Encrypted in transit

All traffic to and from DripData is encrypted with industry-standard TLS (HTTPS), and we require secure connections everywhere. Your data is never sent over the open internet in the clear.

We never see your card details

Payments are processed entirely by Stripe, a PCI-DSS Level 1 certified payment provider. Your card number never touches our servers — we only ever see whether a subscription is active.

Brokerage connections stay read-only

When you link a brokerage, the connection is handled through a regulated third-party aggregator and is read-only — it's used to import your positions, never to trade or move money. We never receive or store your brokerage login credentials.

Account protection

Accounts are protected with strong password requirements and two-factor authentication. We apply automated abuse and bot protection to sign-in and sign-up to guard against unauthorized access attempts.

Trusted infrastructure

DripData is built on established, reputable platforms trusted by thousands of companies. We keep our systems current and follow modern security best practices to help keep your account safe.

Reporting an issue

If you ever notice something that doesn't look right, or have a question about how your data is handled, please reach out through our contact page. We take every report seriously and will respond promptly.

Questions about our security practices? Reach us via the contact page.