How we keep your purchase safe
Plain-English explanation of what's running under the hood, so you know your order and your downloads are handled the same way large companies handle theirs.
Payments
All payments are processed by Stripe — the same payment processor used by Amazon, Target, Apple, Shopify, and most major SaaS companies. We never see, touch, or store your credit card number, CVV, or expiration date. Stripe is PCI-DSS Level 1 certified, the highest tier in the industry.
Site & download infrastructure
BizAgan.com runs on Vercel, the production-grade infrastructure provider behind sites like OpenAI, Anthropic, and Notion. Pages are pre-rendered where possible and served from a global CDN with TLS encryption (HTTPS) by default. The platform automatically scales to whatever traffic we get — there is no single fragile server that "falls over" when many buyers arrive at once.
Your data
Order records live in a managed Postgres database (Neon, on Vercel). All connections are encrypted in transit and at rest. We only collect the minimum needed — see our Privacy Policy.
Your downloads
PDFs are stored on Vercel Blob in private buckets. They are not publicly listable, not crawlable by search engines, and not directly URL-guessable. When you click a download button, the server checks your order entitlement and per-file download limits, then streams the PDF to you directly from private storage. The files are never exposed at a public or guessable URL.
- Magic-links to your downloads page expire 30 days after purchase.
- Each file can be downloaded up to 10 times per order.
- Every download is logged with timestamp + IP for abuse detection.
Email delivery
Order confirmations and gift recipient emails are sent through Resend, an enterprise transactional email provider. We use SPF, DKIM, and DMARC to authenticate every email we send — meaning your inbox can verify the email really came from BizAgan, not a phisher.
Advertising & data
We don't use Google Analytics. We use the Meta Pixel and send advertising conversion data to measure our ads; you can turn off the browser Pixel any time by choosing Decline in the cookie banner. Any data shared with Meta uses a one-way hashed form of your email, never the plain address. We never sell your email or any data to anyone, ever. Full detail is in our Privacy Policy.
Reporting a vulnerability
If you find a security issue, please don't post about it publicly. Email security@bizagan.com with the details and we'll respond within 72 hours. Responsible disclosure is appreciated; we'll credit you (with your permission) once a fix is shipped.