The ENTIRE Page Is Secure
Even if your website is hacked,
your payment page stays secure.
Your payment page is hosted on a fully PCI compliant server. Even if your website gets compromised the hackers can’t access your payment gateway settings because your payment configuration is safely locked in the secure cloud.
All your bank and payment settings secured in the cloud
Protected by firewalls, intrusion detection, and proactive monitoring
All payment settings and code secured
Harder To Spoof Than iFrames
Keep your own design throughout the process.
To meet the strict standards of PCI-DSS compliance and avoid having to complete a 139 question compliance form:
“The entirety of all payment pages delivered to the consumer’s browser originates directly from a third-party PCI DSS validated service provider(s).”
– PCI Security Standards Council
With CloudSwipe, your hosted payment page will be skinned with your to look exactly like your web site. So when your customer gets to your payment page, if it doesn’t look like the rest of your site, they will detect that something isn’t right.
To hijack your hosted payment page, someone would have to design and host a page that looked exactly like your website. Then build an API that mimicked the CloudSwipe API to receive the order information, then find and change the server-side code in your website to start making calls over the fake API to the bogus payment page.
All of this is to say, hosted payment pages are vastly more difficult to fake than iFrames.
Both of these methods require you to comply with over 100 security controls.