We have partnered with PayU a leading payment gateway since 2002, to accept credit cards and electronic check payments safely and securely for our customers.
The PayU Payment Gateway manages the complex routing of sensitive customer information through the electronic check and credit card processing networks. PayU is a PCI DSS 3.2 compliant payments platform for ecommerce businesses in India
The company adheres to strict industry standards for payment processing, including:
1.PCI-DSS (Payment Card Industry Data Security Standard) Compliant:
At PayU, we adhere to all security standards and practices prescribed by Payments Card Industry, India. All PayU servers are PCI-DSS compliant and hence it is safe to save the card information with us.
An important thing to note here is that while card number and expiry details are stored in our secure databases, CVV is never stored.
Also, the card information is never exposed to the outside world as we send only mapped encrypted tokens through network. All, the transactions are theoretically more secure than a normal transaction where you enter card details.
2. 128 bit SSL (Secure Sockets Layer) encryption
All our payment pages are secured with SSL which significantly reduces the risk of you or your customers being exposed to a man-in-the-middle attack. We work to keep all your sensitive data confidential by using best in class technology, which encrypts information shared during an online transaction and protects it. This encrypted information is stored on secure systems/computers.
Further, we ensure that the number of employees involved in the management of the stored data is limited. Also, we use advanced security technology to prevent our computers from being accessed by unauthorized persons.
A web address, that has SSL, begins with https. Integrating PayU payment gateway on your website might help you increase your conversion rate. Customers are more comfortable sharing sensitive information on pages visibly served over https.
3. Two Factor Authentication
According to data, 90% of passwords can be cracked in less than six hours. Also, two-thirds of people use the same password everywhere.
Having a two-factor authentication process helps us in the prevention of fraud, especially in the case of credit/debit card payments. In simple terms, we have just added another layer of security, which makes it harder for someone to access and steal your data.
First, the customer must enter the CVV and then the OTP sent on his registered mobile number.
Tokenization is the technology used to ensure that your customer’s sensitive card information remains safe. Card details is passed in the form of ‘token’ which is a random string of characters thus replacing & safeguarding the sensitive information.
PayU’s fraud prevention solution works 24*7 to prevent payment fraud. Velocity checks such as volume and value of transactions, card issuing country, IP location, pattern detection and real time blocking capability helps us prevent any fraud transactions.
5. Redirect Checkout, Web Fronts & SDKs
At PayU, we provide the options of Redirect Checkout, Web fronts or our mobile SDKs to merchants to accept payment information. The sensitive information is transmitted directly through the PayU servers with no intervention of the merchant’s server thus enhancing the security. And PayU servers, as mentioned above, are highly secure!
It is the responsibility of both, the merchant as well as the customer, to make sure that there is no breach of security. Paying attention to the above security protocols while paying or receiving money can reduce the overall level of vulnerability to cyber-attacks.
With over 4.5lakh merchants using PayU in their daily lives, we make sure that all the security processes and regulations are in place.