How the e-Path Payment Gateway works

The e-Path internet payment gateway provides the securely hosted front-end payment gateway website to enable your customers to safely enter their credit card details to make a payment charge authorisation to you.

Every e-Path merchant has their own secure gateway system which displays their own logo, graphic or header. It is not a case where a generic single system fits all. With e-Path you will have your own exclusive credit card payment gateway package complete with your own unique encryption and decryption systems and THAWTE SSL protecting the live connection.

The actual process - simple and smooth

It's all about communication - from your website to your exclusive e-Path gateway then back again. Your website or shopping cart sends your customers to your secure e-Path payment gateway to where they make their credit card payment charge authorisation to you within a fully PCI compliant environment. The e-Path receipt page is then displayed which allows your customer to print out their payment authorisation for their records then they are returned to your website or shopping cart. It is a seamless, trouble free and smooth process.

Process flow diagram:

To experience this how things flow please visit e-Path payment gateway demonstration.

e-Path instantly notifies you once a credit card charge authorisation has been made. You login to your secure e-Path admin and print out your customer's credit card charge authorisation. You then have a hard copy of your customers payment details just as you would if you received a credit card payment by fax, over the phone or by mail order.

This is the ideal system for those who do not want their payment gateway to instantly accept all online orders and charge cards live and blindly online. e-Path puts you in control.

Credit card details ONLY with the bank approved merchant account owner

One of the most tangible security advantages of the e-Path system is that it ensures credit card details are ONLY with the official bank approved merchant account owner and are completely removed from being stored online or on any device, system or network connected to the internet.

This extreme form of data protection is known as CDU (Critical Data Unplugged). It ensures that highly confidential data does not become potentially exposed to hackers, cyber criminals and internet crooks - which is the root cause behind around 90% of credit card and identity data theft in the world today.

This means that instead of highly sensitive credit card details, personal identity information and confidential business transaction history details being stored online somewhere by the gateway (perhaps even at multiple locations), this data is instead solely with the bank approved merchant account owner only - well away from the vulnerabilities of the open internet and the reported 1.6 billion other people connected to it.

Become instantly PCI compliant online

Your own website does not touch or see credit card data and thus remains totally devoid of any association with credit card details in the first place. That's e-Path's job.

This removes your website or shopping cart from requiring its own PCI DSS compliance certification - which is now a requirement for any website or shopping cart that transmits, stores or processes credit card data in any way. Your use of e-Path ensures you are accepting credit cards online in compliance to PCI.

After e-Path has done its job and you are in receipt of your customers credit card charge authorisation, you still need to ensure you utilise and adopt PCI DSS compliant practices. Therefore, the merchant account/input interface facility your bank is providing you as well as your credit card data handling practices must be PCI compliant.

It is a condition of the e-Path service that you abide by the recommendations of your merchant account provider (your bank) in all matters in relation to security.

Two years in development available with one click

With a single click of a button on your website your customers will be entering into a new ecommerce payment gateway system that has been two years in the making. The ease of use and smooth flow experienced when making a credit card payment online via e-Path provides little indication as to the new generation levels of security being afforded to the online customer and their credit card data. Here are some highlights:

Customer credit card data will be encrypted utilising an exclusive key belonging to only that particular merchant. This is called asymmetrical cryptography and e-Path is believed to be only one of two internet credit card payment gateways currently in the world today that deploys 2,048 bit patented RSA asymmetrical cryptography exclusively and different for each and every gateway merchant.

Customer credit card data will not be permanently stored on the internet. Once the merchant is in receipt of the customers credit card details, as far as the internet and e-Path are concerned, it is as if the payment never occurred in the first place. Nothing will exist on the internet.

It is reported that around 90% of all credit card and identity theft can be traced back to data being compromised when permanently stored in databases, systems, storage devices or networks connected to the internet. e-Path terminates this risk completely.

In a world that is quickly becoming increasingly less tolerant of online vulnerabilities, especially in the area of credit card data and personal identity details security, your use of a CDU compliant gateway will give you a significant advantage over online businesses that use other payment gateway types.

All activity is further protected by THAWTE SSL. The e-Path secure server can not communicate unless SSL is actively protecting the session between customer and e-Path. Normal internet http communication is not possible with the secure e-Path systems.

On the merchant side, you do not have to deal with the risks of online transactions being performed blindly into your merchant account without you knowing.

Ensuring that only the merchant has the authority to charge credit cards directly into their own merchant account is a feature of e-Path, that for the first time, adds genuine and committed real person control into the process of accepting credit cards online.

More detailed information on the above may be found in e-Path Payment Gateway Security.

Give customers the confidence to pay you online

One of the most significant advantages of e-Path is your customers are entering their credit card details into a completely dedicated professional payment gateway system specifically engineered to keep them and their credit card details safe during and after the payment process.

It's certainly not a secret - consumers are becoming increasingly cautious about entering their private credit card details into websites on the internet. Anyone can easily grab a cheap SSL cert and add a webform to ask for credit card details on any website. In todays security aware environment the 'one site that does all' scenario doesn't cut it any longer especially when dealing with highly sensitive credit card data. If consumers don't feel safe they will not part with their credit card details and you may lose vital sales.

e-Path helps to remove this concern and instills confidence in the critically important online payment process. The consumer knows their credit card details are being handled securely the instant they see your own formidable e-Path secure system move in to take good care of them and their credit card details.