Proper security is difficult and time consuming, which is why many gateways shirk in their responsibility and take the "easy way out". TrustCommerce believes in doing things right, and that means proper precautions must be taken. All communication (between your servers, TrustCommerce, the acquiring bank, and the issuing bank) are encrypted end-to-end with 1024-bit RSA public/private keypairs assuring server authenticity and invulnerability to man-in-the-middle attacks.

But that's just the beginning. Your customer's credit card or ACH account numbers are never stored in plaintext, but instead encrypted before they ever hit the disk.

We insist on using proven, open source software for all of our server software, from the OS to the database to the webserver. We realize the fallacy of security through obscurity, which is why we trust code that is subject to peer review and our own direct auditing.

Physical security is as important as virtual security. Servers are monitored round-the-clock by armed guards in high-security NOCs. Only authorized personnel are allowed access to the machines, and all access is logged.

If that weren't enough, how about hosting your site on the TrustCommerce servers? With all the transactions happening behind our firewalls, you'll achieve a level of security not available anywhere else.