Secure purchasing and payments

Your trust is important to us, your safety is equally so.

On this page we have included information on the new European payment procedures Payment Services Directive II (PSD2) and Strong Customer Authentication (SCA) with 3DS2.0.

Level 1 PCI-DSS Compliant
We use platforms that comply with the highest security standards. We do not even store your credit card data on our system.

SSL + HTTP/2
Any area of Venipedia® is protected with secure 2048-bit certificates and we use HTTP/2 for all connections: faster, more secure. We mean any area, not just Venipedia® Merchant.

Stripe as a payment system
Stripe is also used as a payment system by large projects, such as Twitter, Pinterest, Kickstarter, Lyft, Unicef, Booking.com, National Geographic, The Guardian.

Always up to date
All systems are constantly updated to offer you maximum security and the best experience.

In detail

Venipedia® is based on established platformsalso from a security point of view. The entire network is protected by a secure 2048-bit certificate and uses the new HTTP/2 protocol - much faster and safer - from browsing products to information pages, from placing what you want in your shopping cart to the payment process.

Compliance with the PCI-DSS has been defined by the major international credit circuits (Visa, MasterCard, American Express and Discover) to increase security levels in credit and/or debit card transactions. Specifically, this level calls for all 6 requirements to be met:

Maintaining a secure network
Maintaining a systems vulnerability management programme
Monitor and test the network regularly
Protecting the data of credit card owners
Implementing robust access control measures
Maintaining a security information policy

Payment, payment systems and charging

Venipedia® Mercante uses only credit card payment systems. The payment method is based on the secure system Stripe (used by Twitter, Pinterest, TED, The Guardian, Kickstarter, Virgin, MOMA and others) certified at the level PCI Service Provider Level 1. and supports the main circuits: Visa, Mastercard and American Express.

Your credit card is charged at the time of purchase.

Payment Services Directive II (PSD2) and Strong Customer Authentication (SCA) with 3DS2.0

The provision was introduced to help reduce fraud and keep transactions safe and secure.

PSD2 defines new requirements for payment transactions in Europe (effective 14 September 2019). This means that payment transactions in e-commerce, thus also Venipedia Merchant, in which the issuing bank and the buyer's bank are based in the European Economic Area (EEA) are subject to the SCA with 3DS2.0. To purchase, one has to pass the authentication requirement for the issuing bank.

Who determines the authentication process?

The authentication process is determined by the issuing bank and not by Venipedia, secondly payment transactions below €30 (or the equivalent in your currency) may not be subject to 3DS2.0 authentication. This too is determined by the cardholder's issuing bank (this may be a code transmitted via sms, app and similar procedures).

What does it mean, in simple terms?

It means that at the time of payment, your card-issuing bank may require an additional step of authentication and confirmation that you are actually purchasing (those familiar with the Verified By Visa process already know which additional process we are referring to).

Banks will have to reject transactions that do not meet the SCA criteria.

Sample images of the 3 significant steps (credit card data entry, additional authentication screen and rejection of authentication - if positive, the transaction will go through).

La Strong Customer Authentication (SCA) involves the inclusion of at least 2 of the following: something that the purchaser knowsomething that the customer possess and something that the customer is (e.g. you, the customer, know a code-which can be a PIN-and you own a tablet, or a smartphone, or whatever).

In case of problems with this new procedurewe advise you to contact your bank, as we have no control over the process and will not be able to help you. For any other problems concerning the use of the platform (downloads, correctly paid orders, etc.) we are at your disposal.

As we get more information on these new procedures, we will update this section.

Why we no longer use Paypal

Until 2019 we have also incorporated the Paypal payment system, and we are aware that it might be a preferable system for you - and for us, removing it might mean fewer sales -, but at Paypal, commissions are a rather sore point for us, which does not allow us to best express what we want to offer you and to think in freedom about more and more up-to-date and comprehensive services. So we have chosen to remove this payment system. Of course, if Paypal's methods change in the future, we will be happy to reinstate this payment system as well.

Saving the credit card for later use

If you wish, you can save your credit card (or more than one) for faster purchases in subsequent uses. Your credit card data will not be stored in our system, but directly on our partner Stripe, which is certified at the level PCI Service Provider Level 1 to guarantee you maximum security. You can remove your data at any time.

Security policy in Bazzmann - Venipedia

Venipedia® is a Bazzmann project: much more than a creative agency. We have been on the market for more than 15 years, we work and have worked to a large extent with large customers e public institutionswhere security is a priority.

For this we have our own Internal Code of Ethics and a Security Policy Document of data, aimed at ensuring the highest possible security of our offices and infrastructure.

The basic principles that govern us are:

Constantly updating platforms to the latest and most secure software
Constant monitoring of our network
Adoption of anti-intrusion, anti-virus and anti-spam systems
Constant monitoring and resolution of bugs and potential software flaws

Last update: Venice-Mestre, 13 September 2019 / Version 1-Revision 4

Venipedia