Credit Card Policy

Credit Card on File

Starting November 1, 2023, we are implementing a policy that requires clients to have a valid credit card on file when booking appointments.  The credit card information will be securely stored and will be used for the following purposes:

💳To secure and confirm appointments.

💳To charge for last-minute cancellations, no-shows, late arrivals, or any incidentals or additional charges associated with services rendered, or direct billing.

To read more about our Cancellation Policy and No-Show Policy please click here.

SECURITY AND PRIVACY

Please rest assured that your credit card information will be securely stored, and our clinic adheres to strict privacy and security protocols to protect your sensitive data.

🔒 Rest assured, no credit card data is stored in Jane. When you enter credit card information into Jane, Jane creates and keeps a token that can be used to reference that information. However, the actual sensitive data is sent to and stored within our payment solution partner Stripe, who holds the highest security certification in the industry.

CLIENT RESPONSIBILITY

Clients are responsible for understanding and adhering to this comprehensive policy, including the requirement to have a credit card on file.

STAFF RESPONSIBILITY

Our staff is committed to implementing this policy with professionalism and empathy.  We will make every effort to assist clients in rescheduling their appointments, addressing concerns, and ensuring a smooth and enjoyable experience.

REVIEW AND RETENTION

We reserve the right to review and revise this policy as needed to maintain fairness and consistency in our service delivery.

Is It Safe To Store My Credit Card Information On My Account?

Is it Safe to Store my Credit Card information with Deep Roots Massage Therapy?

Deep Roots Massage Therapy wants to protect all of your patient data. This includes your patient health records, intake forms, and credit card information.  This is why we use a secure platform called Jane App.  Through Jane integrated payment system called Jane Payments, we are able to keep your information safe.  Jane Payments is the PCI-compliant solution designed to help health and wellness practices conduct their businesses with a set of flexible, fully integrated features like secure online payments, terminal payments, online booking policies, memberships, and more!

🔒 Rest assured, no credit card data is stored in Jane. When you enter credit card information into Jane, Jane creates and keeps a token that can be used to reference that information. However, the actual sensitive data is sent to and stored within our payment solution partner Stripe, who holds the highest security certification in the industry.

Is Jane compliant with PCI standards?

Jane Payments, which is Jane’s payment solution, is PCI-compliant! Any client cards you store on file or payments you take through Jane Payments are done in a PCI-compliant manner. Being that Jane only stores a token of the credit card (more on that to come!) and that the processing of the credit card actually takes place outside of Jane directly within our payment processors, this all means that Jane is PCI-compliant in the way that we are set up as an application and a company.

Now, if you like to know the technical side like us, then read on! So, all of this means that although Jane is PCI-DSS SAQ A compliant, we work with our payment processors who are PCI-DSS certified/PCI-compliant, and altogether, this results in a PCI-compliant workflow when accepting and processing credit cards with Jane Payments.

How does Jane store credit card data?

In fact, no credit card data is stored in Jane. See below for how that’s possible!

But I enter credit card information into Jane. Isn’t the data stored in Jane?

Not quite. When you enter credit card information into Jane, Jane creates and keeps a token that can be used to reference that information. However, the actual sensitive information is sent to and stored within our payment processing partners.

What’s a “token?”

A token is a snippet of code that replaces sensitive information with a non-sensitive placeholder: a “token.” Jane stores non-sensitive tokens that refer to the data held in the credit card processor’s system (the actual sensitive data). And Jane only works with PCI-compliant credit card processing companies.

How do PCI regulations keep my data safe?

Security measures under PCI fall into two categories: technical and operational. Each measure was created to meet a specific goal. Any company that accepts credit card payments must adhere to PCI requirements.

To read more about PCI compliance requirements:  Official PCI Security Standards Council Site – Verify PCI Compliance, Download Data Security and Credit Card Security Standards