We understand your concern about online security and take this very seriously.
Rest assured, your credit card and order data is encrypted and secure. The software we use for our ecommerce, Shopify, is Level 1 PCI compliant and uses 128 bit SSL certificates to keep order details secure.
What does PCI compliant mean?
The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard for organizations that handle credit card and debit card information. Defined by the Payment Card Industry Security Standards Council, the standard was created to increase controls around credit card data to reduce credit card fraud via its exposure. Any vendor who wishes to sell online and accept payments from Visa, MasterCard, American Express or Discover credit cards, must be PCI compliant.
There are six categories of PCI standards that must be met in order for a merchant to be deemed compliant:
- Maintain a Secure Network
- Protect Cardholder Data
- Maintain a Vulnerability Management Program
- Implement Strong Access Control Measures
- Regularly Monitor and Test Networks
- Maintain an Information Security Policy
For more information on these standards, please check out the PCI FAQs here.
In addition to being able to pay by credit card, Craft & Vision has chosen to use PayPal as the payment processing gateway for customers who don't feel comfortable entering their credit card information directly; for customers who don't have a PayPal account they can still use this gateway by proceeding to the checkout and confirmation screen, and then clicking “Don’t have a PayPal account?” to enter the requisite information.