About Us

Security

Our clients tell us they choose IPayX because we offer the best value for the best products and services. A critical component of this value is our unparalleled focus on security which is a major factor in the design, development and operation of IPayX eService solutions. We allocate a significant level of corporate resources to security on an annual basis because we understand security is binary – systems are either secure … or they are not

When choosing a partner to provide electronic services your primary concern should be the security of your customers’ data while stored or being transmitted. This emphasis is appropriate but your focus should also include the “physical” security of any repository where your customers’ data is stored. Many highly publicized security breaches were due to weak physical security: Passwords left attached to display stations, office documents disposed of improperly, or inappropriate personnel having access to secure data.

There are two compliance programs which highlight the importance we place on security. The first addresses the storage of customer credit card data and is known as the Payment Card Industry – Data Security Standard (PCI/DSS). Any company that collects, stores, or transmits credit card data must be certified as meeting the requirements of the PCI/DSS. IPayX is currently certified as a Level I Payment Service provider; the highest level available. Any provider into whose hands you are placing the credit card and banking account information of your customers should have this certification. You can learn more about the PCI/DSS program by clicking on this link.

The second program is industry oriented and is based on the Health Insurance Portability and Accountability Act of 1996 (HIPAA). HIPAA compliance is critical for any company supporting healthcare providers. Currently, there is no standard certification program available but there are “best practice” documents which define what it means to be HIPAA compliant. To learn more about the IPayX HIPAA Compliance Statement, click on the link.