Card data handling
Card numbers are collected and stored by Stripe, a PCI Service Provider Level 1 processor. VendlyNest only ever sees a payment status and the last four digits.
Trust & security
VendlyNest runs real events with real payments. Here's plainly how we handle money, data, and access — no fine print required.
Payments
Ticket and booth payments go straight to your own connected Stripe account — not into a VendlyNest wallet you have to withdraw from. Card details are entered on Stripe's secure, PCI-compliant checkout and never touch our servers.
Card numbers are collected and stored by Stripe, a PCI Service Provider Level 1 processor. VendlyNest only ever sees a payment status and the last four digits.
Your attendees, applications, orders, and content belong to you. We don't sell it, and we don't use it to advertise to your customers.
Applications, booths, revenue, and documents export to CSV on demand, so your records are always portable — no lock-in.
Invite your team with owner, manager, and reviewer roles so people only reach what their job needs. Every review action is recorded in an audit log.
Every page — your dashboard, public event sites, and custom domains — is served over HTTPS with certificates issued and renewed automatically.
Event data is retained for as long as your workspace is active. Tell us to delete a workspace and we remove its data on request.
Optional two-factor sign-in for organizer accounts is on our near-term roadmap. Until then, use a strong, unique password.
Found a security issue or have a question about your data? Email us and a human responds quickly — we take it seriously.
This page describes how VendlyNest works today and is not a contract. For the binding terms, see our Terms and Privacy pages.