As the security is very important for any online payment system, we propose to use bank grade security levels to protect the users sensitive data like credit card numbers and personal details. Therefore we will use the following:

System Security

• 256bit SSL encryption to handle the details while it is transmitted between the client and the server. This will prevent any wire tapper from capturing the data while it flows through the internet.
• AES encryption where the data will be encrypting using AES before storing them in the databases.
• PCI DSS standard (Payment Card Industry Data Security Standard)where we chosen the hosting server and the payment gateway to be compliant with this standard.

Physical Security

• Hosting server company has ISO 27001 certificate .
• Restricted Entry to the servers.
• The servers are monitored using CCTV.