Consider the pitfalls of online payments forms and processes—it becomes a conversation about conversion rates and drop-off. It’s a conversation that’s been had before. You know, really small problems which require small adjustments that make a HUGE impact on your online checkout experience and bottom line. This begs the questions: What role does your online checkout page play in your shopping experience? Are your users excited about their purchase, and rolling full-steam ahead to the […]
If you’re an online merchant or e-commerce provider by now you know you should use an iFrame based payment form to minimize your PCI compliance burden. And, in general, you’re in luck! Since PCI DSS 3.0 is almost two years old by now, most payment gateways and payment processors have iFrame-based payment forms available for use. However, all is not rosy in the payment form landscape. Just because your gateway offers a payment form that has “iFrame” […]
On February 2nd, 2017, the Payment Card Industry Security Standards Council (PCI SSC) updated its best practices guidelines for securing e-commerce and PCI compliance. Among other things, this is notable because PCI DSS 3.0 was released back in 2013 and a lot has changed since that time; most markedly the roll out of PCI 3.2 in April of 2016. The release of PCI 3.0 introduced the SAQ A-EP – a roughly 40 page requirement compared […]
One of the most important, if not unsettling, principles in security is that there is no such thing as absolute security. It’s possible to bypass any and all security measures given enough time and resources. Look no further than the Snowden revelations. This exposed the degree to which a variety of technologies previously thought to be secure had, in fact, already been compromised. The best that any organization can do is to increase the cost […]
One of our customers, RevolutionParts, has a nice post on migrating to Spreedly. Many of our customers are implementing a new payments service. RevolutionParts were different in that they were already with another provider and needing to make a change. You can read the post over at their site if you’re interested in learning more. This would be most applicable if you sell a SaaS based service into a group of diverse merchants.
The shift from desktop/web to mobile/app is creating new opportunities for commerce. Everything from the way we book travel to have our groceries delivered is up for grabs as commerce moves to mobile. When building an app or service that connects suppliers and consumers you quickly run into the issue of collecting payments on behalf of your merchants/sellers. There are three major challenges: PCI compliance, who will act as merchant of record, and sharing/splitting revenue. Stripe […]
Merchants using Spreedly to process payments currently have several options when it comes to collecting credit card data. If you are already heavily in PCI scope and want to manage the addition of cards yourself you can use the direct API. If you want to limit your PCI scope under PCI-DSS v3.0 with the some ability to customize your payment form then our iframe payment form is the best way to go. Today we’re happy to announce a […]