At Sujan Studio, we are committed to protecting every transaction and every piece of personal information shared on our platform.
Our infrastructure combines Stripe's world-class payment technology with Cloudflare's advanced security layer, ensuring seamless, secure, and compliant experiences for all our clients and creators.
1. Secure Payments via Stripe
All payments made on Sujan Studio are processed through Stripe, a global leader in secure online payment solutions. Stripe is PCI DSS Level 1 certified — the highest standard of payment security available.
1.1. 1.1. What this means for you:
- End-to-End Encryption – All card data is encrypted and transmitted securely using TLS (Transport Layer Security).
- No Sensitive Data Stored – Sujan Studio does not store credit card numbers or CVV information. All payment data is securely handled by Stripe.
- Bank-Grade Security – Stripe's infrastructure meets or exceeds the same security standards used by major financial institutions.
2. Network & Infrastructure Security
We partner with Cloudflare, a global leader in web application and network security, to provide continuous protection for all platform activity.
2.1. 2.1. Cloudflare Security Measures:
- DDoS Mitigation: Prevents malicious attacks and ensures uninterrupted platform uptime.
- Web Application Firewall (WAF): Blocks unauthorised access attempts, SQL injection, and cross-site scripting (XSS).
- Secure DNS & CDN Layer: Accelerates and protects data delivery globally while safeguarding against man-in-the-middle attacks.
- TLS 1.3 Encryption: Ensures all traffic between users, our servers, and Stripe remains encrypted and tamper-proof.
Together, Stripe and Cloudflare create a dual-layer of security — protecting both your payments and your data integrity in real time.
3. Automated, Transparent Transactions
Sujan Studio automates all financial transactions through Stripe to ensure fairness and clarity for every user.
3.1. 3.1. For Clients:
- Your payment is securely held until the project is completed.
- You're charged only for confirmed bookings and verified project hours.
- Each payment includes a digital invoice and is fully trackable in your client dashboard.
3.2. 3.2. For Creators:
- You are paid automatically upon project completion.
- All payouts are based on your confirmed rates, including any bonuses or commissions.
- Payments are deposited directly into your nominated account within 2–5 business days, depending on region.
4. Data Privacy & Information Security
We comply with global data protection frameworks, including the Australian Privacy Act 1988 (Cth), GDPR (EU), and CCPA (US).
4.1. 4.1. Our Commitment:
- Encryption in Transit & at Rest: All stored information uses AES-256 encryption, and all data transfers use TLS 1.2+ or higher.
- Minimal Data Retention: We store only essential metadata (invoice ID, amount, status) — never full card details.
- Access Control: Only authorised personnel can access payment-related data under strict access logs.
- Cloudflare Zero-Trust Policy: Enforces device-level and identity-based access control for all internal and external network connections.
5. Fraud Prevention & Account Protection
To maintain a safe creative community, Sujan Studio uses Stripe Radar and Cloudflare's global security network to monitor transactions in real-time.
5.1. 5.1. Our layered fraud protection includes:
- AI-driven fraud detection across all transactions.
- Two-Factor Authentication (2FA) for creator and admin logins.
- IP reputation and bot filtering powered by Cloudflare's global intelligence network.
- Automatic dispute resolution through Stripe's mediation framework.
- Creator ID verification to prevent impersonation or unauthorised access.
6. Refunds, Disputes & Chargebacks
Sujan Studio ensures all financial disputes are handled fairly and transparently.
6.1. 6.1. Refunds:
- Refunds are processed only for verified cancellations or service discrepancies, per our Cancellation Policy.
- All refunds are issued through Stripe using the same payment method.
6.2. 6.2. Disputes:
- Clients and creators can raise disputes via their dashboard or by contacting our Support Team.
- Our dispute resolution process is transparent and backed by Stripe's secure workflow.
6.3. 6.3. Chargebacks:
- Stripe's compliance and legal team manage chargebacks directly with your financial institution, protecting all parties in accordance with card network rules.
7. Compliance Standards & Legal Framework
Sujan Studio's systems and third-party providers adhere to globally recognised compliance frameworks:
| Framework | Compliance | Description |
|---|---|---|
| PCI DSS | Level 1 | Payment Card Industry Data Security Standard. |
| GDPR (EU) | Compliant | Data privacy protection for EU residents. |
| Australian Privacy Act 1988 (Cth) | Compliant | Local data and identity protection standards. |
| ISO/IEC 27001 | Aligned | Information security management certification. |
| Cloudflare ISO 27001 & SOC 2 | Certified | Network, infrastructure, & data protection compliance. |
8. Creator Payment Integrity
Sujan Studio ensures creators are paid fairly and consistently.
8.1. 7.1. Our Creator-First Model:
- No Per-Lead Charges: You'll never pay for inquiries or "dud leads."
- Guaranteed Minimum of 2 Hours: Every project booking ensures at least 2 hours of paid work.
- Zero Risk Assignments: Projects are assigned only after client confirmation.
- Bonuses & Incentives: Earn extra for high-quality work, fast delivery, and travel beyond 25 km from your base.
- Automated Payouts: Stripe automatically processes your payments once the project is verified as complete.
9. Continuous Security Audits & Monitoring
We continuously test and improve our systems to meet evolving security standards.
- Quarterly security audits by certified cybersecurity firms.
- Cloudflare analytics for real-time network threat detection.
- Stripe webhook monitoring for transactional consistency.
- Annual compliance reviews for PCI DSS and privacy frameworks.
10. Your Responsibilities
All Sujan Studio users must:
- Keep login credentials secure.
- Enable 2FA where available.
- Provide accurate billing and banking details.
- Immediately report suspicious or unauthorised account activity.
11. Contact & Incident Reporting
If you suspect any security issue, fraudulent activity, or payment irregularity, please report it immediately.
12. Our Ongoing Commitment
Sujan Studio is dedicated to maintaining the highest level of transparency, data protection, and payment security. By combining Stripe's PCI-compliant infrastructure with Cloudflare's zero-trust security network, we ensure that every client and creator can transact safely — anywhere in the world.
Sujan Studio — creativity meets secure, effortless payments.
Legal Disclaimer
This Payment & Security Compliance statement is intended to describe Sujan Studio's practices for protecting transactions and sensitive user data. It does not override your statutory rights under applicable privacy or consumer protection laws.
For more on Stripe’s and Cloudflare’s certifications, visit: