Udemy never stores your full credit or debit card information in our systems. Instead, we work with credit card payment processors who are certified under the Payment Card Industry Data Security Standard (PCI DSS).
When you enter your credit or debit card details on Udemy, that information is sent directly to secure databases maintained by these payment processors, who then complete the transaction. That partner will then provide us with a portion of the stored information (such as the last four digits of your card number) to help do things like document your purchases and label your saved cards.
During this process, our partner will also provide us with a randomly generated alphanumeric ID called a "token". This token allows us to reference a saved card during future transactions, even though we don’t have the full card number on file ourselves. Because we store a token instead of the full credit card number you originally provided, there is no way for anyone who is logged in to your Udemy account to obtain your full credit card information from within your account. In addition, there is no way for a third party to reverse-engineer a token ID to obtain the credit card information.