Security
Learn how Fundraise Up secures your organization’s fundraising data.
Fundraise Up takes security and compliance seriously, offering a range of features to ensure that all user data is kept secure. All data is encrypted using the latest industry-standard encryption technology, and all payment processing is PCI-compliant. Fundraise Up also follows strict anti-fraud measures to keep your fundraising campaigns safe from fraudulent activities. Additionally, Fundraise Up is compliant with GDPR and other data protection laws, ensuring that all user data is handled responsibly and securely.
Compliances
Fundraise Up holds the following security and compliance certifications:
| Global | ISO27001, SOC 2 Type 2, PCI DSS Level 1, WCAG 2.1 AA |
|---|---|
| US and Canada | CCPA, CRA, PIPEDA |
| Europe | GDPR |
| Asia | — |
| Latin America | — |
Personally identifiable information (PII)
Learn how Fundraise Up secures your organization’s fundraising data by reading the PII FAQ.
Cookies
Fundraise Up uses first-party cookies to ensure that the platform works properly, detect and prevent fraud, and understand how people interact with your giving experience. There are some cookies that are essential for Fundraise Up to function properly. These necessary cookies are described below.
Necessary cookies
Some cookies are essential to the operation of our platform and make it usable and secure by enabling basic functions. We use those cookies in a number of different ways, including:
- Fraud prevention and detection: cookies and similar technologies that we deploy through our platform help us learn things about computers and web browsers used to access the Fundraise Up platform. This information helps us monitor for and detect potentially harmful or illegal use of our services. For example, in order to process payments transactions for our users, it is necessary for Fundraise Up to collect information about the donation and the donor. To help secure transactions and minimize fraud, we collect additional information through the use of cookies and other technologies in helping to identify bad actors and prevent them from making fraudulent donations.
- Security: to protect user data from unauthorized access.
- Functionality: to keep our platform working correctly, like showing donors the right information for their selected location.
Third-party vs. first-party cookies
There are two main types of cookies that can be set:
- First party cookies: these cookies are placed and read by Fundraise Up directly when you use our platform.
- Third party cookies: these cookies are not set by Fundraise Up, but by other companies, like Google or Facebook, for site analytics purposes. See further details below on how to manage these cookies.
Cookies used by Fundraise Up
- Client ID: A client ID cookie is a first-party cookie set by Fundraise Up that is used to identify a user’s browser. This cookie is necessary for the platform to function properly and securely by helping us detect and prevent fraud, as well as understand how people interact with your giving experience.
Cookie name fundraiseup_cid Expiration 10 years Type First-party cookie Necessary cookie Yes - Session ID: A session ID cookie is a first-party cookie set by Fundraise Up that is used to identify a user's session. This cookie is necessary for the platform to function properly and securely by helping us detect and prevent fraud, as well as understand how people interact with your giving experience. This cookie expires after a pre-determined period of time, usually when the user closes their browser.
Cookie name fundraiseup_session Expiration Session Type First-party cookie Necessary cookie Yes
SSL requirements
Fundraise Up requires a valid SSL certificate to be installed on your web server, and your website must be served using HTTPS. If a valid SSL certificate cannot be detected, it will not be possible to process donations using Checkout.
To request more information about Fundraise Up’s security practices and compliances, email support@fundraiseup.com.