At Rocketspark, we take the security of your payment information seriously. We never store or have direct access to your full credit card details. Instead, we use trusted, PCI-compliant payment providers to securely handle all credit card transactions.
Current customers (using Stripe)
All new Rocketspark customers — and any customers who have updated their payment details since mid-2025 — are billed through Stripe.
Stripe is a globally trusted payment processor that securely stores and manages your credit card information using advanced encryption and security measures.
When you enter your card details on the Rocketspark billing page:
The information is sent directly and securely to Stripe.
Stripe stores your card details in encrypted form.
Rocketspark only receives a reference token from Stripe — not your card number.
This token allows us to charge your card for subscription payments, without ever accessing your card information.
Stripe is PCI DSS Level 1 certified, the highest level of security certification available in the payments industry.
You can learn more about Stripe’s security practices here: https://stripe.com/docs/security
Legacy customers (using Windcave)
Some long-time Rocketspark customers may still be billed via Windcave (formerly Payment Express).
Windcave is also a PCI DSS Level 1 certified provider.
For these customers:
Credit card data entered during setup is securely transmitted to Windcave.
Windcave stores your card information in encrypted form.
Rocketspark receives a secure token that allows us to process ongoing payments without ever seeing or storing your card details.
You can learn more about Windcave’s security practices here: https://www.windcave.com/security
Summary
Rocketspark does not store or have access to full credit card details.
Payments are processed through Stripe (for most customers) or Windcave (for legacy customers).
Both providers are PCI DSS Level 1 compliant and use strong encryption to protect your information.