Security Statement

Inherent to our operations and business approach is the need to provide a secure, robust and reliable payment processing service. Information security is our top priority and one of our company values. To this end we have invested in extensive security controls and infrastructure and we’re constantly updating and improving our online payment systems to ensure that your money always gets where it needs to go, safely and securely.

Comercia Global Payments are a highly trusted online payment card processor who employs a team of full time information security staff who are seen as experts in their industry.

The Payment Card Industry Data Security Standard (“PCI DSS”) was established in 2004 as an industry-wide set of requirements and processes to help ensure that cardholders can make purchases confident in the knowledge that their credit card information will be protected from fraudsters.

Comercia Global Payments are compliant with PCI DSS Version 3.1, the highest level of PCI compliance, and Comercia Global Payments were one of the first service providers in Europe to achieve this certification in November 2015. Comercia Global Payments appeared on the VISA website as a case study on implementing the PCI DSS. To view our latest PCI-DSS certificate, please click here.

Information is sent to us from businesses via the internet and we connect to financial institutions with whom we are fully certified and approved.

All information that is transmitted to Comercia Global Payments over the internet is protected to ensure confidentiality. In addition to this confidentiality control all messages sent to and from our services are authenticated using digitally signed digests.

Our technical infrastructure is located in secure co-location facilities that have 24×7 manned security and advanced building management systems along with environmental controls.

Critical servers and applications are monitored constantly to pre-defined threshold levels and Comercia Global Payments staff is instantly alerted via our real time monitoring and alerting service.

The network is designed to be highly resilient with duplicate and triplicate systems in place depending on the critical nature of each component.

Cardholder information is encrypted and hashed when stored on Comercia Global Payments systems and will not be displayed in our reporting systems.

We perform regular tests and employ external auditors to test our security standards. All our employees comply with our strict internal security policy and attend training as part of our induction programme and regularly thereafter.