Flash Clean processes card payments through Stripe, a PCI DSS Level 1 certified payment provider. Card details go directly to Stripe via encrypted connections and are never stored on our servers.
Card data & encryption
- Card numbers and security codes are entered through Stripe.js and transmitted over HTTPS directly to Stripe.
- Flash Clean's systems do not access or retain full card numbers or CVC codes.
- Any future charges use Stripe tokens rather than raw card data.
When you are charged
No payment is taken at booking. Where card details are provided, your card is securely saved with Stripe when you book, and payment is only processed after your service is completed and the final price confirmed with you.
Additional security controls
- Signed webhook validation to prevent tampering.
- Direct verification with Stripe before marking bookings as paid.
- Operational credentials stored securely in environment variables.
Your authorisation
By booking a service, you authorise Flash Clean to place an authorisation hold and capture payment following service completion in accordance with our terms and cancellation policy.
Questions?
If you have any questions about payments or our security practices, contact us at admin@flashclean.com.au or call 0426 365 751.