TexasLlamaBack to Home

Security & Compliance

Last Updated: February 5, 2026

1. Payment Processing Security

TexasLlama partners with industry-leading payment processors to ensure secure, PCI-DSS compliant transaction processing. Our payment infrastructure follows the security standards established by Stripe, PayPal, and Square—trusted by millions of businesses worldwide.

Payment Security Measures:

  • Tokenization

    Card details are never stored on our servers. We use tokenization to replace sensitive data with secure identifiers.

  • Real-time Fraud Detection

    AI-powered fraud detection monitors transactions for suspicious activity in real-time.

  • SSL/TLS Encryption

    All payment data is encrypted in transit using 256-bit SSL/TLS encryption.

  • PCI-DSS Compliance

    Full compliance with Payment Card Industry Data Security Standard (PCI-DSS) Level 1.

2. Refund and Returns Policy

Our refund policy is designed to be fair and transparent, following industry best practices established by leading SaaS companies like OpenAI, Anthropic, and major cloud service providers.

Refund Terms:

  • Service Fees

    Full refund within 14 days of initial payment for service fees. No questions asked.

  • Setup Fees

    Setup fees are non-refundable after work has commenced. Refunds available if cancelled before work begins.

  • Subscription Cancellations

    30-day notice required for subscription cancellations. Prorated refunds available for remaining period.

  • Data Export

    Full data export provided within 7 days of cancellation request. No additional fees.

Dispute Resolution: For any billing disputes, contact billing@texasllama.com. We commit to resolving all disputes within 10 business days.

3. Data Protection and Privacy

Your data security is our highest priority. We implement enterprise-grade security measures comparable to those used by Anthropic, OpenAI, and major financial institutions.

  • Encryption at Rest: AES-256 encryption for all stored data
  • Encryption in Transit: TLS 1.3 for all data transmission
  • Access Controls: Role-based access control (RBAC) with MFA
  • Audit Logging: Comprehensive activity logs maintained for 2 years
  • Data Residency: US-based data centers with optional EU residency
  • Backup & Recovery: Daily backups with 30-day retention, 99.9% recovery SLA

4. Security Architecture

Our security architecture follows the principles established by the NIST Cybersecurity Framework and incorporates controls from ISO 27001, SOC 2, and the Cloud Security Alliance.

  • Network Security: Next-gen firewalls, DDoS protection, VPN access
  • Application Security: SSDLC, SAST/DAST testing, dependency scanning
  • Infrastructure Security: Immutable infrastructure, infrastructure as code
  • Monitoring: 24/7 SOC monitoring, real-time alerts, incident response
  • Vulnerability Management: Regular scans, penetration testing, bug bounties

5. Compliance Certifications

We maintain active compliance programs aligned with industry standards and regulations.

  • SOC 2 Type II attestation in progress (expected Q2 2026)
  • HIPAA compliance for healthcare clients (BAA available)
  • GDPR compliance for EU data subjects (DPAs available)
  • Texas Data Privacy Act (TDPA) compliant
  • FedRAMP authorization in planning phase

6. Security Contact

For security inquiries, vulnerability reports, or compliance questions:

Security: security@texasllama.com

Billing: billing@texasllama.com

Legal: legal@texasllama.com

Response Time: 24 hours for security inquiries