Proven safety measures

All the security you need – already built-in. Fraud checks, updates and verifications are all part of our daily routine here to ensure all systems are protected, and meet the latest industry standards.


Fraud Checks

Every one of your transactions is checked against global black-lists. Bank identification numbers (BIN) are also checked to help validate transactions.

We conduct industry standard checks for authenticity and integrity alongside the checks undertaken by the card processors.

You can report fraudulent transactions, and in exceptional circumstances, you can configure additional security features by contacting our support.


PCI DSS Compliant

PCI DSS is in place to meet industry standard levels of security when storing, processing, and transmitting cardholder information. We are PCI DSS compliant, meaning that we securely handle your payment and transaction data. This certification also includes regular audits by a qualified security assessor (QSA) who is accredited by both MasterCard and Visa.


3-D Secure

By default, PAYMILL enables you to use additional fraud prevention features provided by Visa and MasterCard to protect you from fraudulent transactions.

It allows your customers to assign a username and password to their card, which then provides an additional level of security for both you and your customers.

Adding 3-D Secure to your checkout flow ensures your customer is actually the credit card holder, allowing you to keep chargebacks under control whilst offering protection on successfully verified transactions.


Data Encryption

All our websites use HTTPS with 256-bit encryption and our SSL certificates have 4096-bits keys, satisfying the highest security and data protection standards. We constantly update and verify our security certificates and encryption algorithms to keep your data safe. Our servers are hosted in a state-of-the-art data centre in Germany and meet the local data privacy laws.

Help make us safer

We’re incredibly grateful for your support from the community. In case you find a bug or security issue on our website, let us know about it as soon as possible by sending an e-mail to [email protected] – you’ll get a reply personally within 24 hours. You can also send us a secure email by using our PGP public key.