Secure Payment with Payson


Payson logo


As Payson manages large amounts of money every day, there are extreme demands imposed on our security work. Therefore, we use a secure payment system and together with our partners we continuously monitor all transactions.

Information on Payson’s security management

As the Personal Data Controller, Payson has a general responsibility to implement appropriate technical and organisational measures that are based on the risks to privacy associated with the processing, in order to ensure and be able to demonstrate that the processing is conducted in accordance with the General Data Protection Regulation (GDPR). Payson is certified by the security companies Trustwave and GlobalSign.

 
Authentication and encryption

All data communications take place using Transport Layer Security (TLS). To gain access the Services, login is required using BankID or username and password.

Payson uses encrypted communication in the form of TLS. All data communications to and from the user’s computers are encrypted with TLS, the latest approved internet standard for encrypted communications.

Payson applies password protection in the form of a fully encrypted login process, which means that no information is sent as unencrypted text. The user’s password is stored in one-way encrypted format with a standardised one-way cipher.

To avoid unauthorised access to information if a computer is left unattended, the system automatically logs out the user when the user becomes inactive. The user is always responsible for the risk in the case of unauthorised use of the Services as a result of having left a logged-in computer unattended.

Continuous user verification is carried out. Each call to the Payson servers entails a check of the logged-in user’s authorisations.

All card transactions are based on banks’ 3D-Secure technology.

For more information about Payson click here