Serious security

When you trust us with your data, we’re committed to keeping it safe.

We use industry-leading security practices to ensure your sensitive information is safe, always.

Platform & app security

We safeguard your Ibotta experience over and above industry-standard protections. Your data is securely encrypted at all times using both software and hardware protections. When you secure your account with a phone number, we’ll send you a text to verify it’s you before allowing withdrawals from your earnings or access to payment features.

Financial security

When you use Ibotta to pay for purchases, security is built in. Your sensitive financial information is never stored on Ibotta’s servers — in fact, we can’t access this information if we wanted to. We use the same encryption standards as your bank, which means things like your address and card number are instantly encrypted and can’t be seen by anyone, ever.

Privacy

Data makes Ibotta more helpful and relevant to you, but how we use this information is a choice that belongs to you. In addition to securely storing data we collect about you, we do not sell or share your personally identifiable information, and we only use your personal information as specifically outlined in our Privacy Policy. In addition, we comply with all applicable laws and regulations pertaining to data privacy and security. Review our Privacy Policy for detailed information.

Frequently asked questions

Your data is securely stored at all times. Data from Ibotta apps is encrypted in transit using Transport Layer Security (TLS) and is encrypted at rest using various hardware and software protections. Sensitive data is stored in continuously hardened infrastructure which is monitored for threats 24/7, constantly penetration tested, and regularly reviewed by security professionals. In simpler terms, we take your security very seriously.

Security is one of the biggest priorities in everything we do, especially when it comes to your financial information. Your payment information is securely stored and processed by a third party payment processor. This third party payment processor has been audited by a PCI-certified auditor and is certified to PCI Service Provider Level 1 — the most stringent level of certification available in the payments industry. Your sensitive data is immediately encrypted and is not stored on Ibotta’s servers. When you trust us with your financial information, we’re committed to keeping it safe.

There are a number of ways to protect your account and stay safe online:

Keep your passwords safe — don’t share them with anyone.
Mix it up — make sure that your password includes numbers, capital letters, and special characters. Don’t use the same password for multiple services or apps.
Secure your account with a phone number — navigate to Account > Settings > Verify device to add a phone number to your account. We’ll send you a text message to make sure it’s you if we detect suspicious activity and before you withdraw cash.
Enable extra security — in Settings, enable features like Face ID to protect certain settings and features such as Pay with Ibotta.

When you link your loyalty account, your data is secured using the same protections as other parts of our app. We only receive data about the items you purchase and where you purchased them. We do not receive and cannot access any personally identifiable information associated with your loyalty account other than your loyalty account login information (which you provide to us when you link your account).

We recognize the important role of security researchers in helping keep our community safe. If you believe you’ve discovered a bug in Ibotta’s security, please let us know via our bug bounty program — our security team will rapidly investigate and respond as quickly as possible to your report. Note that this program is for software security researchers only. If you have a question or issue with your account, please contact Ibotta Care.

Serious security

Security

Privacy

Trust

Platform & app security

Financial security

Privacy

Frequently asked questions

Have more questions?

We’re here to help. Visit our Help Center for frequently asked questions or to get in touch with our Ibotta Care team.