Payment is by credit card only.

All phases of payment to be made between the buyer and PAYBOX is fully encrypted and protected. The protocol used is SSL coupled with banking electronic banking.

This means that the information related to the order and the number of the credit card do not circulate in clear on Internet.

  • The credit card number is not printed on any paper, invoice, bill or other listing.
  • The merchant is not aware of the card numbers.
  • PAYBOX does not retain card numbers after sending the payment transaction to the merchant's bank.

Thus, no person has access, either in a computerized manner or in a printed form, to the credit card details of the buyers.

The risk of being "hacked" his credit card number during a purchase on a website with PAYBOX SYSTEM is zero.

The different steps of securing payment on the Internet

With each request for payment, the buyer switches from the merchant server to the payment server PAYBOX SYSTEM, in connection with the banking world.

  • The buyer arrives on an SSL encrypted payment page
  • Entering the card number, end of validity date, visual cryptogram and authorization request. The link between the buyer and the PAYBOX SYSTEM server is established in HTTPS, secure protocol with SSL, which encrypts all the information exchanged. This protection protects the data sent over the Internet and guarantees the buyer that his credit card number can not be intercepted in clear by a third party during his transfer to the PAYBOX SYSTEM secure server. The PAYBOX SYSTEM home page informs the buyer about his purchase: presentation of the merchant's name (which guarantees that the trade has been authenticated)
  • When the card number has passed a first level of control (Luhn key, oppositions, etc.), the PAYBOX SYSTEM server issues a request for authorization to the center of the bank to which the merchant is affiliated. This is achieved using standard banking protocols on a specialized telecommunication network
  • The authorization center of the bank returns an authorization number or a refusal. If the payment is accepted, PAYBOX SYSTEM then carries out the following operations: - display of the payment ticket on the buyer's screen (option) - sending of the payment ticket by e-mail to the buyer and the merchant - The The card number is NEVER sent back to the merchant.
  • The buyer is then automatically redirected to the merchant's server, where he can resume the course of his visit

A special process, developed by PAYBOX Services, allows PAYBOX SYSTEM to monitor in real time the behavior of the holder, especially to avoid the use of the payment server as a tester of automatically generated card numbers, or for other types of payment. attacks:

  • BIN search by increment, derivation or mask
  • multiplication of tests with different expiry dates
  • random carrier (IP) addresses
  • "nomadic" card, etc.

Verify that you are in secure mode when paying online

In this case, a closed padlock appears at the bottom of the browser window.

he beginning of the site address http:// www indicated at the top of the screen goes to https:// www The "S" following "http" indicates that the communication is protected.

To use a PAYBOX card payment service, a merchant must hold a VAD money account at an identified bank.

Securing the PAYBOX platform

PAYBOX is naturally approved by VISA and MASTERCARD as part of the PCI-DSS program.

The various audits carried out validated that PAYBOX SERVICES applied a high level of security and integrity, supplemented by a sustained action of technological watch, in order to maintain the infrastructure of its double platform.

It should also be noted that PAYBOX SERVICES is the first French operator to have all its services certified (Ecommerce and Proximity Payment).

This PCI-DSS program imposes security standards defined by VISA, MASTERCARD, BANK GROUP, AMERICAN-EXPRESS and many payment systems.