Support Center
»
Knowledgebase
»
What type of security does PayJunction use in the Trinity system? Is PayJunction secure?
Login
[Lost Password]
Email:
Password:
Remember Me:
Search
-- Entire Support Site --
Knowledgebase
Downloads
Article Options
Add Comment
Print Article
PDF Version
Email Article
Add to Favorites
What type of security does PayJunction use in the Trinity system? Is PayJunction secure?
Solution
PayJunction Security Overview
PayJunction's commitment to security is of the highest level. We use the highest level of encryption and the latest security tools to ensure that our merchants and customers feel secure. We would like to highlight some of the key features of our security.
Secure Socket Layers
All of PayJunction's communications and processing occurs through Secure Socket Layers (SSL 128bit). Any toolkits linked for usage with the PayJunction gateway are also tested to make sure that security is setup properly. With the proper security layers setup between toolkits and the gateway, we ensure that no information can be stolen and all information is securely transacted.
PayJunction is proud to be Visa CISP/PCI compliant. Through the CISP/PCI program PayJunction is certified under Visa to be up to date with the utmost security regulations assigned by 3rd party assessors.
What is CISP/PCI
The Visa U.S.A. Cardholder Information Security Program (CISP) defines a standard of due care and enforcement for protecting sensitive information. Because the payment industry places a high priority on maintaining the confidentiality and integrity of account and personal data, the CISP requirements are directed to all entities that store, process, or transmit cardholder information. The program ensures the annual validation of merchants and all service providers on both the Issuing and Acquiring side of the business.
CISP/PCI Requirements
1. Install and maintain a working firewall to protect data
2. Keep security patches up-to-date
3. Protect stored data
4. Encrypt data sent across public networks
5. Use and regularly update anti-virus software
6. Restrict access by "need to know"
7. Assign unique ID to each person with computer access
8. Don't use vendor-supplied defaults for passwords and security parameters
9. Track all access to data by unique ID
10. Regularly test security systems and processes
11. Implement and maintain an information security policy
12. Restrict physical access to data
How CISP/PCI Works
CISP/PCI currently applies to any entity (meaning Merchant or Service
Provider) that stores, processes or transmits Visa cardholder information. All eligible Merchants and Service Providers-regardless of size - or in the case of service providers - whether they support Issuing or Acquring activity-must comply with the 12 basic CISP/PCI requirements. Compliance actions, however, are scaled to a level of risk that is based on the number of accounts stored or processed.
More Information
You can find more information on the Visa CISP compliance programs we well as all it's regulations by visiting the official Visa website:
http://www.visa.com/cisp
Article Details
Article ID:
14
Created On:
16 May 2006 04:09 PM
This answer was helpful
This answer was not helpful
User Comments
Add a Comment
Posted By: Andrea McNeely (ajmcneely@yahoo.com) On: 19 Jun 2006 11:20 AM
Need more specific information about network i.e., level of encryption 128 bit, etc.
Sharing is good. If you have a comment about this entry, please feel free to share. The comments might be reviewed by our staff, and may require approval before being posted. Questions posted will not be answered. Please submit a Ticket for support requests.
Fullname:
Email: (Optional)
Comments:
Home
|
Submit a Ticket
|
Knowledgebase
|
News
|
Downloads
Language:
English (U.S.)
09 Feb 2010 - Help Desk Powered By PayJunction Inc. -
Merchant Account
and
Credit Card Processing
