Security & Data Handling

Built for MSP procurement and operational trust: export-only, NDA-first, minimum necessary data, documented retention and purge.

Download Security & Data Handling (PDF)

Last updated: February 13, 2026

Summary at a glance — export-only, NDA-first, no credentials, minimum fields, documented policies.

Summary (at a glance)

• NDA-first (we will sign yours)
• We do not request credentials, admin access, or remote control
• We work from CSV exports only
• Minimum necessary fields; customer names & pricing not required for standard Snapshot
• Retention and purge policy documented
• Subprocessors disclosed
• DPA available on request

Our security and data handling principles are structured to ensure procurement and operational transparency for MSPs purchasing export-only reconciliation. For full details, see the downloadable security summary.

Data we request

We request the minimum export fields required to reconcile billed quantities versus actual counts and produce a fix-ready Leak List. This data is limited to:

• Account identifier (can be masked)• Quantity fields relevant to billing (units)• Actual counts for endpoints/users/licenses• Optional mapping file when keys differ

Data we do not request

• Tool credentials or privileged access
• Admin access to PSA/RMM/IdP
• Remote control of your environment
• Customer PII that is not required for reconciliation
• Customer pricing for standard Snapshot outputs

PaidOnShow will never request information outside of the documented minimum fields needed for reconciliation.

Data transfer and storage

You control your transfer method. If you have a preferred secure portal, we will use it. Data is accessed on a need-to-know basis, with encryption at rest and in transit where applicable.

Retention and purge policy

Data is retained only as long as necessary to deliver contracted work. Standard retention and purge timelines are documented in the security summary. Purge attestation available upon request.

Subprocessors and tools

PaidOnShow uses a limited set of standard business tools for payments (Stripe), scheduling (Calendly or equivalent), and e-signature (DocuSign or equivalent). If your procurement requires alternate tools, we will accommodate where feasible.

Incident response

If a security incident impacts customer-provided data, we follow a documented response process and notify affected parties in line with contractual obligations. Contact: Jordan@paidonshowops.com

NDA and DPA requests

We will sign your NDA, or provide ours. Data Processing Addendum (DPA) is available upon request.

PaidOnShow LLC

4737 Addax Drive

New Port Richey, FL

United States

Contact

Jordan@paidonshowops.com

Legal

Cookie Policy

Security & Data Handling

Security & Data Handling

Security & Data Handling

Built for MSP procurement and operational trust: export-only, NDA-first, minimum necessary data, documented retention and purge.

Built for MSP procurement and operational trust: export-only, NDA-first, minimum necessary data, documented retention and purge.

Last updated: February 13, 2026

Last updated: February 13, 2026

Summary at a glance — export-only, NDA-first, no credentials, minimum fields, documented policies.

Summary at a glance — export-only, NDA-first, no credentials, minimum fields, documented policies.

Summary (at a glance)

Our security and data handling principles are structured to ensure procurement and operational transparency for MSPs purchasing export-only reconciliation. For full details, see the downloadable security summary.

Data we request

We request the minimum export fields required to reconcile billed quantities versus actual counts and produce a fix-ready Leak List. This data is limited to:

• Account identifier (can be masked)• Quantity fields relevant to billing (units)• Actual counts for endpoints/users/licenses• Optional mapping file when keys differ

Data we do not request

• Tool credentials or privileged access• Admin access to PSA/RMM/IdP• Remote control of your environment• Customer PII that is not required for reconciliation• Customer pricing for standard Snapshot outputs

PaidOnShow will never request information outside of the documented minimum fields needed for reconciliation.

Data transfer and storage

You control your transfer method. If you have a preferred secure portal, we will use it. Data is accessed on a need-to-know basis, with encryption at rest and in transit where applicable.

Retention and purge policy

Data is retained only as long as necessary to deliver contracted work. Standard retention and purge timelines are documented in the security summary. Purge attestation available upon request.

Subprocessors and tools

PaidOnShow uses a limited set of standard business tools for payments (Stripe), scheduling (Calendly or equivalent), and e-signature (DocuSign or equivalent). If your procurement requires alternate tools, we will accommodate where feasible.

Incident response

If a security incident impacts customer-provided data, we follow a documented response process and notify affected parties in line with contractual obligations. Contact: Jordan@paidonshowops.com

NDA and DPA requests

We will sign your NDA, or provide ours. Data Processing Addendum (DPA) is available upon request.

• Tool credentials or privileged access
• Admin access to PSA/RMM/IdP
• Remote control of your environment
• Customer PII that is not required for reconciliation
• Customer pricing for standard Snapshot outputs