Sending/Receiving, or storing Credit Card information with Drift is against our Terms of Service.
Drift is not PCI compliant, and should not be used to transmit or store PCI information.
No Sensitive Information. In using Drift, YOU AGREE NOT TO USE THE PLATFORM OR ANY SERVICES TO COLLECT, MANAGE OR PROCESS SENSITIVE PERSONAL INFORMATION. DRIFT WILL NOT BE RESPONSIBLE FOR ANY LIABILITY RESULTING FROM YOUR USE OF THE PLATFORM OR ANY SERVICES TO COLLECT OR PROCESS SENSITIVE PERSONAL INFORMATION.
We also define sensitive personal information in the TOS:
"Sensitive Personal Information" means Personal Data subject to specialized security regimes, including without limitation the Health Insurance Portability and Accountability Act ("HIPAA"), and the standards promulgated by the PCI Security Standards Council ("PCI").
Drift's Terms of Service https://www.drift.com/terms-of-service/ prohibit using the platform to collect, manage, or process "Sensitive Personal Information". This includes (but is not limited to) Payment Card Industry ("PCI") information as well as Health Insurance Portability and Accountability Act ("HIPAA") information, or any personal data subject to specialized security regimes. Drift will not be responsible for any liability resulting from the use of the platform or any services to collect or process sensitive personal information.