Payments and Payment Security:
Customer Safety in Wix Stores.
The Wix Stores checkout process is secured by HTTPS / TSL encryption and it is safe for your customers to purchase from your Wix site.
TLS (Transport Layer Security) is the standard security technology for establishing an encrypted link between a web server and a browser. This link ensures that all data passed between the web server and browsers remain private and secure. TLS is the industry standard and is used by millions of websites in the protection of their online transactions with their customers.
Additionally, Wix Stores only works with payment gateways that offer the highest level of security certification (PCI DSS Level 1).
For more information about how payment information is encrypted and secured, please contact your chosen payment gateway.
MERCHANT SERVICES PROVIDER:
Mini Maud uses Braintree (a division of Paypal) as their Merchant Services.
Level 1 PCI compliance
Braintree's environment meets the highest industry standards and guidelines.
Level 1 PCI compliant
Braintree is a validated Level 1 PCI DSS compliant service provider.
No prohibited data storage
Braintree doesn't store raw magnetic stripe, card validation code, or PIN block data.
Data encryption via the Braintree Vault
Cardholder data is managed in the Braintree Vault, using multiple encryption keys with split knowledge and dual control. A data thief would not be able to make use of information stolen from a database without also having the key. This data store cannot be connected to via the internet. We also offer secure data migration to the Braintree Vault.
Authentication and session management
Braintree require users to authenticate every time they log into the Control Panel. Passwords are never stored directly in the database, and all API and Control Panel communication between merchants and Braintree is conducted using TLS (Transport Layer Security).
Activity monitoring and testing
Braintree review and observe employee, customer, and vendor activity to guard against suspicious or unauthorized activities. We conduct automated vulnerability scans at least quarterly, and at least once a year we have extended penetration testing conducted by outside sources.
Security of Wix's Billing Services and PCI Compliance:
Wix Security and PCI Compliance: "The security of our users' sensitive data is of extreme importance to us here at Wix and we are 100% committed to protecting it.
Wix is Payment Card Industry Data Security Standards (PCI DSS) compliant and is accredited as a level 1 service provider and merchant.
The PCI DSS is an information security standard for organizations or companies that accept credit card payments. This standard helps to create a secure environment by increasing cardholder data, thus reducing credit card fraud. For more information about PCI compliance click here.
ISO 27001 Compliance
Wix has been audited and certified as ISO 27001 compliant. The ISO 27001 certification outlines industry best practices for managing security risks.
ISO 27018 Compliance
Wix has been audited and certified as ISO 27018 compliant. The ISO 27018 certification outlines industry best practices for handling personally Identifiable Information (PII) in a public cloud computing environment.
Wix uses Transport Layer Security (TLS) encryption to help protect your online financial transactions."
Additionally, Mini Maud has installed additional security with McAfee TrustedSite, providing a SSL Certificate.
and protecting Mini Maud's visitors' private information. It also protects against Malware and Phishing
Mini Maud would love to have Paypal as an additional payment option but unfortunately, it is not possible within Jersey, Channel Islands at this moment in time. However, Paypal are always adding countries to their reach, and we will offer this service once it becomes available to us here. We apologise for the inconvenience it may cause, however Braintree, which we use is a division of Paypal that specialises in mobile and web payment systems for ecommerce companies.
The Customer has an option to turn off cookies with a pop up cookies agreement when entering the site.
There are two types of cookies (both used on Wix sites:
- Session (Transient) cookies: these cookies are erased when you close your browser, and do not collect information from your computer. They typically store information in the form of a session identification that does not personally identify the user.
- Persistent (Permanent/Stored) cookies: these cookies are stored on your hard drive until they expire (i.e based on a set expiration date) or until you delete them. These cookies are used to collect identifying information about the user, such as Web surfing behavior or user preferences for a specific site.