Various Portals Save Our Card Details - How Saf...

Various Portals Save Our Card Details - How Safe Is That?

Score: 2 Votes: 2
Score: 2 Votes: 2
Missing
Deal Subedar
1
2
1226
6

I came across too many portals, where they just ask me to enter CVV, they already have my card details.

Does web portals have such authority to save our card details? I mean auto save..

I think, user should only have control to allow them to save or…..

Too many frauds happening now a days…..

9 Comments  |  
7 Dimers
Missing
Deal Lieutenant
7
98
3592
33

It is becoming a practice these days. But forcing users to save card details is not fair. And it’s safe if you use that option only on trusted websites. Problem only if the app owning company is having ill intentions.

Check PCI DSS for more details.

Giphy
Deal Subedar
12
112
2478
46

I think payumoney saves cvv as well

Missing
Deal Lieutenant
2
336
4362
52

Arre, HDFC PayZapp aur Citrus wallet ko to dekho… CVV no poochhte hi nahi aur sauda(transaction) kar daalte hain… https://cdn2.desidime.com/assets/textile-editor/icon_evil.gif
.
Tran: HDFC Payzapp & Citrus process transactions without CVVhttps://cdn2.desidime.com/assets/textile-editor/icon_evil.gif

A2z1
Deal Major
82
1,971
17011
143
@vijkap201 wrote:

Arre, HDFC PayZapp aur Citrus wallet ko to dekho… CVV no poochhte hi nahi aur sauda(transaction) kar daalte hain… https://cdn2.desidime.com/assets/textile-editor/icon_evil.gif
.
Tran: HDFC Payzapp & Citrus process transactions without CVVhttps://cdn2.desidime.com/assets/textile-editor/icon_evil.gif

PayZapp does not ask me for VBV/ MSC password or OTP while linking cards. This seems very
risky, can anyone link my card to their respective PayZapp account and transact?
At the time of linking card, no card data is stored on the phone. At the time of making payment
for a transaction with your linked cards, the following checks are conducted -
a. User id which is recognized through device mapping with device specific cryptic signature
locked onto device by the application
b. Secure PIN entered by user mapped to user ID
c. Card number + mobile number combination as registered with bank
Hence if any user maps your card information to their PayZapp a/c, they will not be able to use
the same, as bank registered card number – mobile number combination check will fail.

Missing
Deal Subedar
1
2
1226
6
@adnan_d92 wrote:

I think payumoney saves cvv as well


we don’t know about others:-D

ad bot
1
1
1
1
Ad Bot

I found this sponsored content on one of the ad networks.

123
Deal Subedar
2
287
1068
17
@A2Zdeals wrote:

@vijkap201 wrote:

Arre, HDFC PayZapp aur Citrus wallet ko to dekho… CVV no poochhte hi nahi aur sauda(transaction) kar daalte hain… https://cdn2.desidime.com/assets/textile-editor/icon_evil.gif
.
Tran: HDFC Payzapp & Citrus process transactions without CVVhttps://cdn2.desidime.com/assets/textile-editor/icon_evil.gif

PayZapp does not ask me for VBV/ MSC password or OTP while linking cards. This seems very
risky, can anyone link my card to their respective PayZapp account and transact?
At the time of linking card, no card data is stored on the phone. At the time of making payment
for a transaction with your linked cards, the following checks are conducted -
a. User id which is recognized through device mapping with device specific cryptic signature
locked onto device by the application
b. Secure PIN entered by user mapped to user ID
c. Card number + mobile number combination as registered with bank
Hence if any user maps your card information to their PayZapp a/c, they will not be able to use
the same, as bank registered card number – mobile number combination check will fail.


4 me PayZaap ask CVV code after confirming OTP on payment page. When it redirects to app CVV code box comes always

Open uri20161119 27009 2xv7rv
Deal Captain
0
276
10781
160
@sunnie wrote: I came across too many portals, where they just ask me to enter CVV, they already have my card details.
Does web portals have such authority to save our card details? I mean auto save..
I think, user should only have control to allow them to save or…..
Too many frauds happening now a days…..

https://cdn0.desidime.com/attachments/photos/259177/medium/34087261480959267_0.jpg?1480959268

have control to allow them to save : i think once entered and captured in the system, the user anyway has given that unstated okay to them/anyone having/using that info.

even if they say they are not saving or our details won’t be passed on to marketeers (database sale)
we all know what happens in 8/10 cases. whether officially or unofficially or by way pilferage or stealing of information by internal or external individuals.

@disclaimer wrote: ..But forcing users to save card details is not fair…

do they ? https://cdn1.desidime.com/assets/textile-editor/icon_confused.gif
who ‘force’ users to not proceed on orders/ certain orders without saving these details ? https://cdn1.desidime.com/assets/textile-editor/icon_eek.gif

as for trustworthy or reliable. that one can not say so for ‘any’ establishment with 100% certainty.

@disclaimer wrote: ..Check PCI DSS for more details…

woh kya hota hai. vaat ij date ?

Missing
Deal Lieutenant
7
98
3592
33

@Spock I can’t find any option to stop it from remembering my card number since last few updates.

PCI DSS: Leg pulling?

Missing
Deal Subedar
1
2
1226
6
@Spock wrote:

@sunnie wrote: I came across too many portals, where they just ask me to enter CVV, they already have my card details.
Does web portals have such authority to save our card details? I mean auto save..
I think, user should only have control to allow them to save or…..
Too many frauds happening now a days…..

https://cdn0.desidime.com/attachments/photos/260143/medium/34096131480959749_6.jpg?1480959749

have control to allow them to save : i think once entered and captured in the system, the user anyway has given that unstated okay to them/anyone having/using that info.

even if they say they are not saving or our details won’t be passed on to marketeers (database sale)
we all know what happens in 8/10 cases. whether officially or unofficially or by way pilferage or stealing of information by internal or external individuals.

@disclaimer wrote: ..But forcing users to save card details is not fair…

do they ? https://cdn1.desidime.com/assets/textile-editor/icon_confused.gif
who ‘force’ users to not proceed on orders/ certain orders without saving these details ? https://cdn1.desidime.com/assets/textile-editor/icon_eek.gif

as for trustworthy or reliable. that one can not say so for ‘any’ establishment with 100% certainty.

@disclaimer wrote: ..Check PCI DSS for more details…

woh kya hota hai. vaat ij date ?


PCI DSS??

Missing