SECURITY STATEMENT
Security is probably one of the most significant concerns for both the consumer and the retailer during an on-line transaction. In reality an on-line transaction is probably more secure than a card transaction in a shop or conducted over the telephone or by fax. Information transmitted on-line is encrypted using complicated logarithm combinations, unlike these other methods that use standard medium coding.
All our Website payment transactions utilise the PROTX payment gateway. This system uses a combination of established and innovative techniques to ensure the security and integrity of all sensitive data, protecting both the retailers and their shoppers.
All communication between the shopper and PROTX is encrypted to the maximum strength supported by the shopper's browser using TLS or SSL (security). Credit/debit card details are secured within 128-bit encrypted sessions & sensitive information is stored on a heavily encrypted database protected by multiple government approved firewalls.
Additional security measures include a security key that is used to produce an MD5 hash value. Hash values are often used as digital signatures as they cannot be reversed to obtain the original information. They allow the receiver to validate that the information received is identical to that sent. Protx web servers are certified by Thawte, a public Certificate Authority, ensuring that shoppers and retailers alike can have confidence that nobody can impersonate PROTX to obtain confidential information.
Protx VSP is designed so the vendor (retailer) doesn't have to hold sensitive information on their site, should anyone gain unauthorised access to their database the information they obtain will not allow them to recover credit/debit card details or other sensitive information. All communication between the retailer and PROTX, including the details of the purchase, are encapsulated using a highly encrypted and digitally-signed protocol to ensure that the information passed is secure and tamper-proof. The possibility of obtaining sensitive information from the Protx VSP database is minimised due to high levels of encryption; firewall security and the measures taken to ensure the information is indecipherable.
Protx also has several forms of physical security and multiple levels of system
backup in place designed to protect the Protx VSP and its database. This makes
transaction processing highly reliable and resilient to events such as security
breach or power failure. Only authorised personnel can gain access to the VSP
Server and fingerprint identification is required. Multiple servers are dedicated
to particular roles & VSP Servers are fed by multiple power supplies and
backup generators. Secondary network connections will activate should the primary
network fail. VSP Servers also have multiple connections to banking authorisation
and settlement systems.