Workspace isolation
Tenant-owned records carry workspace identity and access checks are enforced beyond the browser interface.
Security by design
KickBooker derives access from current workspace membership, calculates financial terms in trusted server code and treats verified Stripe webhooks as the source of payment truth.

Tenant-owned records carry workspace identity and access checks are enforced beyond the browser interface.
The client selects an operation; the server derives prices, recipients, wallet identity and credit values.
Credit and billing flows use immutable references, idempotency controls and append-only ledger records.
Access
The API checks active portal, workspace and resource membership before returning or mutating protected records.
Payments
Checkout callbacks identify an order while signed Stripe webhook events drive the authoritative paid, refund and dispute lifecycle.
FAQ
Protected workspace and participant records are isolated by membership. Only activity information deliberately published on a public or shared-link page is visible outside the workspace.
Their access to that workspace stops. Removing workspace membership does not delete the person's separate portal account.
Card details are entered through Stripe Checkout. KickBooker stores the payment references and status needed to match the payment, not raw card numbers.
The payment is confirmed from a verified Stripe notification. A browser redirect alone cannot mark an order as paid.
Content reviewed 2026-07-14.
Talk to KickBooker
Send us the workflow you need to validate and we will explain how KickBooker handles it.
Explore KickBooker
Start with the workflow closest to your activity business. Every page describes a capability that is part of the same KickBooker workspace.