IconUK Secure Payment Information

There is a lot of talk about Fraud and Anti Fraud on the Internet, which can sometimes cause any web retailer problems of potential missed sales.

We have tried the best we can to make things as simple and secure as possible without making life difficult for our customers. This is why we use 2 payment gateways, both highly secure and both using 128bit encryption.

One of things that our customers aren't aware of it that we (IconUK) never actually see any information about the payment cards you use. All we see is the order contents, payment & shipping address and a telephone number.

We can say this is true, we get quite a few telephone calls asking if we can take payment over the phone for orders, which sadly at the moment we cannot.

This is because of what’s called “Cardholder Not Present” what basically happens is that were we to accept a payment over the phone, we would have to manually enter the card information into the little machine, and press “Cardholder Not Present” which then makes us liable for any costs due to fraudulent use. So if someone rang up with a stolen card and we processed an order and payment, we would send the goods in good faith to an address supplied by the bounder, cad, rogue and shyster, they would then get the benefit of the goods at someone else’s expense. Then the original cardholder makes a Charge Back on the payment which comes straight out of our bank so we loose all way round loose the payment and the goods. That’s why we don’t accept payment over the phone.
I write this from experience, on a couple of occasions this has happened, and now we have our own stringent checks. Such as we would prefer that an initial order has the same shipping and billing address (this wouldn’t affect the majority of our customers) also if possible a landline phone number, or as a lot of our customers are now doing, adding landline and mobile numbers in your account information.

However things are in a transitional period at the moment where Visa & MasterCard are insisting that "we" (the online retail community) sign up to use 3D Secure to authenticate payments via the Internet. This basically acts like Chip & Pin. But you don’t actually enter a PIN number. All it means to you the customer is that there are extra checks done at the time of payment authentication.
Once this is in place we will be able to accept payments over the telephone using a virtual PDQ machine (the thing you slide your card into in real shops).

This is because when you actually get to the payment page, you seamlessly move to either the Protx or Pay Pal secure server which takes your payment details and then moves you back to our web site upon completion of your transaction.

First Payment Gateway up is Protx, so good that Sage bought them out, not quite a Victor Kyam moment but the sentiment is the same.
Protx are rigorous with their security Protx Accredited Security Information if you read about their accreditation you can see they are almost fanatical about their whole system, which I can say whenever I have any contact with them, I have to answer a number of security questions before actually being able to ask them about my initial enquiry. They are incredible knowledgeable and helpful. If ever you as a customer need any help with anything to do with Protx they WILL help and try their level best to resolve any issues.

Here is a basic guide to how the payment process actually works.

Protx Payment Gateway

 

Next up is dear old PayPal; they have been doing their thing for years. They were bought by E-bay in October 2002, this shows how much they thought of PayPal, another Victor Kyam moment.

I think it’s fair to say that when a large company buys a Payment Gateway service they are doing so because the system is already working and want the kudos of being able to offer it as part of an existing collection of services. This is certainly true in E-bays case, PayPal is now intrinsically linked into e-bay. But what it also offers is ease of use for the end user, you and me.

PayPal use SSL type encryption to make sure data is encrypted between PayPal and your Internet browser.

It works in a similar fashion to Protx (see image above for a pictorial guide)

If you would like to read more information about PayPals security visit PayPals help section