How are the data protected?
When your customer is paying on your site via PayPlug, they are directed to an entirely secured PayPlug payment page thanks to an HTTPS protocole. The payment process is then directly established on the PayPlug secured payment server.
Sensitive data, such as the credit card number of the customer and its date of expiry, are fully encrypted and protected through an SSL protocol so that the information cannot be intercepted by a third party throughout the course of the transaction.
Card numbers are encrypted instantly and are not accessible by PayPlug retailers. In addition, PayPlug does not retain the card numbers and relies on a secure infrastructure that respects the international PCI-DSS standard. For more information on this standard click here.
All pages on the PayPlug website, as well as the links, are secured by SSL and TLS and benefit from a Thawte Extended Validation security certificate.
What are SSL and TLS?
The SSL ("Secure Soccket Layer) and TLS ("Transport Layer Security") acronyms, are security protocoles meant to ensure the confidentiality of exchanged information on the internet beween apps and users. These technologies allow to transfer your credit card information in an entirely safe way.
The TLS is new and more secure version than the SSL. It is made of 2 layers: The TLS protocole Record, and the TLS Handshake.
The first layer provides a secure connection thanks to methods such as DAE (Data Encryption Standard"). It can also be used without encryption.
The second layer allow the server and computers to identify one from one another, and then chose together an encryption algorithm and secret keys before beginning to send data or messages.