Security & Policies
Security information and resources for keeping you and your customers safe.
Configure a Content Security Policy (CSP)
How to set up and enforce a Content Security Policy on your Foxy checkout to control which scripts, styles, and other resources are allowed to load.
Foxy's security and compliance certifications
How to verify Foxy's PCI DSS Level 1 Service Provider status, request our Attestation of Compliance, and find copy/paste policy language for your own store.
Help Us Help You
Understanding our support policies, goals, and approaches
Our Official Domains & Public Code
We use a few different domains (both our own and 3rd parties) to host different pieces of the Foxy infrastructure and code. To prevent phishing and g...
PCI DSS and compliance requirements
What PCI DSS is, the different levels of compliance (SAQ A through D), and how to tell which requirements actually apply to your store when you process payments through Foxy.
Privacy and security considerations
Privacy and security details worth understanding when running a Foxy store, including email leakage during checkout, receipt visibility, cart contents exposure, and sending sensitive data over email.