Security Center
Monitor and improve your Stripe account security posture
Security Score
33%
Critical Issues
2
Warnings
2
Security Checklist
Two-Factor Authentication
CriticalAdds an extra layer of security to your account
Enable 2FA in your Stripe dashboard to protect your account from unauthorized access.
API Key Rotation
Needs AttentionRegularly rotating your API keys enhances security
Your secret key is over 90 days old. Consider rotating it soon.
Webhook Signing
SecureVerifies that webhooks come from Stripe
Webhook signing is properly configured and active.
PCI Compliance
SecureStandards for handling cardholder data
Your account is PCI DSS compliant through Stripe.
Restricted API Keys
Needs AttentionLimit API key permissions to minimum required
Consider using restricted API keys for different functionalities.
Log Monitoring
CriticalRegular review of access and activity logs
Set up alerts for suspicious activity and regularly review access logs.
Security Best Practices
- • Use different API keys for development and production
- • Regularly review your Stripe dashboard for suspicious activity
- • Enable two-factor authentication on all accounts
- • Use webhook signatures to verify Stripe events
- • Keep your integration updated with the latest Stripe API version