Security is paramount to our business, as it is for yours. We have designed a system that protects your booking channel credentials, which we have detailed on our data security page.
Here are some precautions we took:
Your channel password is not stored but is processed once to obtain a token from that channel that is used to act on your behalf.
We are required to have that authentication token to connect to the channels API, and we store that token.
That token is encrypted in our database using an RSA key pair (the same algorithm used to encrypt credit card details).
The RSA private key, necessary to decrypt your token, is itself encrypted on our database using AES-256 (the same algorithm used to encrypt data to the cloud, on iCloud, Dropbox or the likes).
The encrypted private key is stored on a third server, inaccessible from the Internet.
If needed, it is always possible to void the token by changing your password directly on the booking channel.