Various Portals Save Our Card Details - How Safe Is That?
- 560
- 10
-
- Last Comment
I came across too many portals, where they just ask me to enter CVV, they already have my card details.
Does web portals have such authority to save our card details? I mean auto save..
I think, user should only have control to allow them to save or…..
Too many frauds happening now a days…..
- Sort By
I think payumoney saves cvv as well
Arre, HDFC PayZapp aur Citrus wallet ko to dekho… CVV no poochhte hi nahi aur sauda(transaction) kar daalte hain…
.
Tran: HDFC Payzapp & Citrus process transactions without CVV…
@vijkap201 wrote:
Arre, HDFC PayZapp aur Citrus wallet ko to dekho… CVV no poochhte hi nahi aur sauda(transaction) kar daalte hain…
.
Tran: HDFC Payzapp & Citrus process transactions without CVV…
PayZapp does not ask me for VBV/ MSC password or OTP while linking cards. This seems very
risky, can anyone link my card to their respective PayZapp account and transact?
At the time of linking card, no card data is stored on the phone. At the time of making payment
for a transaction with your linked cards, the following checks are conducted -
a. User id which is recognized through device mapping with device specific cryptic signature
locked onto device by the application
b. Secure PIN entered by user mapped to user ID
c. Card number + mobile number combination as registered with bank
Hence if any user maps your card information to their PayZapp a/c, they will not be able to use
the same, as bank registered card number – mobile number combination check will fail.
@adnan_d92 wrote:
I think payumoney saves cvv as well
we don’t know about others:-D
@A2Zdeals wrote:
@vijkap201 wrote:
Arre, HDFC PayZapp aur Citrus wallet ko to dekho… CVV no poochhte hi nahi aur sauda(transaction) kar daalte hain…
.
Tran: HDFC Payzapp & Citrus process transactions without CVV…PayZapp does not ask me for VBV/ MSC password or OTP while linking cards. This seems very
risky, can anyone link my card to their respective PayZapp account and transact?
At the time of linking card, no card data is stored on the phone. At the time of making payment
for a transaction with your linked cards, the following checks are conducted -
a. User id which is recognized through device mapping with device specific cryptic signature
locked onto device by the application
b. Secure PIN entered by user mapped to user ID
c. Card number + mobile number combination as registered with bank
Hence if any user maps your card information to their PayZapp a/c, they will not be able to use
the same, as bank registered card number – mobile number combination check will fail.
4 me PayZaap ask CVV code after confirming OTP on payment page. When it redirects to app CVV code box comes always
@sunnie wrote: I came across too many portals, where they just ask me to enter CVV, they already have my card details.
Does web portals have such authority to save our card details? I mean auto save..
I think, user should only have control to allow them to save or…..
Too many frauds happening now a days…..
have control to allow them to save : i think once entered and captured in the system, the user anyway has given that unstated okay to them/anyone having/using that info.
even if they say they are not saving or our details won’t be passed on to marketeers (database sale)
we all know what happens in 8/10 cases. whether officially or unofficially or by way pilferage or stealing of information by internal or external individuals.
@disclaimer wrote: ..But forcing users to save card details is not fair…
do they ?
who ‘force’ users to not proceed on orders/ certain orders without saving these details ?
as for trustworthy or reliable. that one can not say so for ‘any’ establishment with 100% certainty.
@disclaimer wrote: ..Check PCI DSS for more details…
woh kya hota hai. vaat ij date ?
@Spock I can’t find any option to stop it from remembering my card number since last few updates.
PCI DSS: Leg pulling?
@Spock wrote:
@sunnie wrote: I came across too many portals, where they just ask me to enter CVV, they already have my card details.
Does web portals have such authority to save our card details? I mean auto save..
I think, user should only have control to allow them to save or…..
Too many frauds happening now a days…..have control to allow them to save : i think once entered and captured in the system, the user anyway has given that unstated okay to them/anyone having/using that info.
even if they say they are not saving or our details won’t be passed on to marketeers (database sale)
we all know what happens in 8/10 cases. whether officially or unofficially or by way pilferage or stealing of information by internal or external individuals.@disclaimer wrote: ..But forcing users to save card details is not fair…do they ?
who ‘force’ users to not proceed on orders/ certain orders without saving these details ?as for trustworthy or reliable. that one can not say so for ‘any’ establishment with 100% certainty.
@disclaimer wrote: ..Check PCI DSS for more details…woh kya hota hai. vaat ij date ?
PCI DSS??
It is becoming a practice these days. But forcing users to save card details is not fair. And it’s safe if you use that option only on trusted websites. Problem only if the app owning company is having ill intentions.
Check PCI DSS for more details.