Secure Payment Methods
Razorpay uses the highest assurance SSL certificate on its website which is the EV SSL (Extended Validity SSL) certificate.
Without TLS Encryption in place, all data sent over the Internet is unencrypted and is visible to anyone with the means and intent to intercept it. An easy way to check if the e-commerce websites you frequent are SSL certified is to look at the URL and see if it uses ‘http://’ or ‘https://’ protocol.
The additional ‘s’ signifies a secure e-payment system. You can also look for the padlock icon at the beginning of the URL. Modern web browsers in their race to make the Web secure by default are now following the opposite paradigm – mark HTTP sites as “insecure”.
PCI-DSS (Payment Card Industry Data Security Standard) Compliant:
PayU adhere to all security standards and practices prescribed by Payments Card Industry, India. All PayU servers are PCI-DSS compliant and hence it is safe to save the card information with us.
An important thing to note here is that while card number and expiry details are stored in our secure databases, CVV is never stored.
Also, the card information is never exposed to the outside world as we send only mapped encrypted tokens through network. All, the transactions are theoretically more secure than a normal transaction where you enter card details.
128 bit SSL (Secure Sockets Layer) encryption
All our payment pages are secured with SSL which significantly reduces the risk of you or your customers being exposed to a man-in-the-middle attack. We work to keep all your sensitive data confidential by using best in class technology, which encrypts information shared during an online transaction and protects it. This encrypted information is stored on secure systems/computers.
Further, we ensure that the number of employees involved in the management of the stored data is limited. Also, we use advanced security technology to prevent our computers from being accessed by unauthorized persons.
A web address, that has SSL, begins with https. Integrating PayU payment gateway on your website might help you increase your conversion rate. Customers are more comfortable sharing sensitive information on pages visibly served over https.
Two Factor Authentication
According to data, 90% of passwords can be cracked in less than six hours. Also, two-thirds of people use the same password everywhere.
Having a two-factor authentication process helps us in the prevention of fraud, especially in the case of credit/debit card payments. In simple terms, we have just added another layer of security, which makes it harder for someone to access and steal your data.
First, the customer must enter the CVV and then the OTP sent on his registered mobile number.
Tokenization is the technology used to ensure that your customer’s sensitive card information remains safe. Card details is passed in the form of ‘token’ which is a random string of characters thus replacing & safeguarding the sensitive information.
PayU’s fraud prevention solution works 24*7 to prevent payment fraud. Velocity checks such as volume and value of transactions, card issuing country, IP location, pattern detection and real time blocking capability helps us prevent any fraud transactions.
Apart from these mandatory protocols, most e-commerce websites and payment gateways have their own fraud and risk prevention systems. Big data analytics and machine learning play a huge role in devising these risk prevention and mitigation systems.
By delving into our customer’s data and analysing patterns, we at Razopray can discern between a ‘normal’ and a ‘suspicious’ transaction with credible accuracy. Apart from this, there is a lot that you as a customer can do to reduce the risk of fraud.