Eliminating Risk at the Core
Credit card fraud remains a constant challenge for the financial sector and global e-Commerce. Beyond the systemic risk, we must also recognise the often-significant financial loss and personal distress inflicted upon both business owners and cardholders. For the small business owner especially, it can be a devastating experience.
While the industry seems to remain focused on addressing symptoms and tightening up existing standards, e-Path targets the very reasons why fraud can happen in the first place - and then we terminate them by design.
"We received an order for a $1,799 digital camera. If we had stayed with our online real-time gateway, the transaction probably would have processed automatically and we would have sent out the camera. e-Path allows us to check the details first, and process the payment through our terminal sitting on our counter which we are already paying for. We smelled a rat with this order and saved ourselves a fortune."
Root Cause #1: Merchant Account Vulnerability
The Problem Real-time payment gateways rely on your merchant account being open to them on the internet. Any anonymous individual on the world wide web can attempt a transaction into your business merchant account without your knowledge.
The e-Path Solution We remove your merchant account from the internet. Nothing is transacted unless you, the bank-approved merchant account and business owner, approves the online order and performs the transaction yourself.
Root Cause #2: Permanent Data Storage
Close to 95% of data theft happens because highly sensitive and confidential information is stored in online databases, within data storage appliances or is accessible via network communication in some form or another. Unscrupulous individuals and criminal elements target these "treasure chests" of sensitive credit card and identity data.
The Problem Traditional real-time payment gateways store names, credit card details and trasaction history data in databases or in data storage devices in some form or another. If these become breached, the consiquences can be catastrophic for businesses and cardholders alike.
The e-Path Solution e-Path does not permanently store credit card data, identity data or transaction history data of any type within our systems. We don't even have databases. Once the merchant/business owner receives the payment details, it is as if the data never existed online.
✔Today e-Path provides a refreshingly inexpensive, safe and secure service worldwide that ensures sensitive cardholder data and transaction history information never exists permanently on the internet, in any database or within any storage device in any shape or form. And as we say ... when it doesn't exist, it cannot be stolen.
Powerful Leading-Edge Cryptography
We use both 2,048-bit and 4,096-bit RSA encryption - the same level of protection used by some of the most intensely security aware organisations in the world and approved by card vendors themselves. Each gateway has its own unique encryption system; data can only be decrypted by the specific merchant it was intended for.
Not even e-Path can decrypt data from a merchant's gateway system once it has been delivered to the merchant/business owner.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&9wksm))kdolem2ui+Nhfu4SEldOkdnka/xon+u8
Ii/TxMDqbc86Lzm94nklenswkxF8=
=tOdt
The data above is an actual encrypted credit card belonging to our Managing Director, Peter Thwaites. It has been on public display on our website since 2016 and still remains 100% secure to this day. A bold and powerful demonstration of the encryption deployed by e-Path throughout its systems.
CDU Compliance
CDU (Critical Data Unplugged) represents the ultimate in online cardholder data security. So powerful is the CDU ideal we've given it its own page. See: CDU Compliance.
PCI DSS Compliance
The PCI DSS (Payment Card Industry Data Security Standards) is a product of the Payment Card Industry Security Standards Council, an organisation founded by participating payment brands Visa International, Master Card, American Express, Diners Club and JCB.
The purpose of the Payment Card Industry Security Standards Council is to establish a uniform world wide standard to addresses vulnerability and risk associated with the handling of credit card data across all industries.
e-Path utilises the Payment Card Industry Data Security Standards Council approved Security Metrics™ PCI DSS program. Security Metrics™ is U.S. based and provides a wide range of compliance programs and services covering critically vital industries.