Security
We built ZiggyPayroll for our own business first. Security was never optional.
Protect your account with time-based one-time passwords via any authenticator app.
All stored data is encrypted using AES-256 — the same standard used by financial institutions.
All data in transit is protected using TLS 1.3 — the latest transport security protocol.
We are working toward SOC 2 Type II certification. Our infrastructure is built to meet its requirements.
We never store card data. All billing is handled by Stripe, a Level 1 PCI DSS compliant processor.
Your data is isolated at the database level. No other customer can access your data under any circumstances.
Data subject access requests, deletion requests, and portability exports are all supported.
We conduct periodic security reviews of our infrastructure, code, and access controls.