Security - Credit Cards and PCI DSS

Security is obviously important in any ecommerce delivery. Nobody wants their personal details - especially their credit card info exposed and subsequently misused.

Every ezimerchant ecommerce solution is automatically provisioned with SSL - the "padlock" is built in!

At ezimerchant we take security very seriously - but everybody says that - so what makes us different to the rest?

We approach security as a process, not a product. Our processes affect how we develop software and how we deliver our services via our infrastructure.

Secure Infrastructure

The PCI Security Council (an organisation founded by American Express, Discover, JCB, MasterCard and Visa) have mandated any website that accepts credit card information follow the "Data Security Standard" (DSS).

The DSS makes for an excellent framework for thinking about and ensuring the process around deployment of infrastructure and delivery of services is secure.

ezimerchant follows the recommendations and requirements of the PCI DSS.

You can view our PCI scan compliance document here.

Development Process

All our development staff are trained and intimiately familiar with the Open Web Application Security Project development guidelines.

The OWASP guidelines do a good job of cataloguing the various types of ways insecure code can be misused by hackers to make a system do something that was not intended. Just being aware of the types of threats goes a long way to ensuring systems remain safe.

We automatically "fuzz" test our software for further automated vulnerability detection.

Combined with rigourous walkthroughs we are confident we are providing the best level of security in our services.

Report security issues here

HAVE A QUESTION?

need an answer?

e-commerce FORUMS

DISCUSS

We get the THUMBS UP!

VIEW TESTIMONIALS

feeling insecure?

EZIGUARD
McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams