FAQs
- PayFast is PCI DSS Level 1 Service Provider (the highest level).
- PayFast is developed with the same demands on security and performance as web sites used for banking services and share trading. Your account login, personal details, and all money transactions are secured using Secure Socket Layer (SSL) technology with high security 256 bit encryption.
- Your sensitive financial information (like credit/debit card details) is never sent to the people you pay! So you can send money without sending your financial information! So you don't need to worry about paying people you don't know.
- Payfast makes use of 3D Secure to further enhance the security of credit card transactions on PayFast.
Reference: https://support.payfast.co.za/portal/en/kb/articles/is-payfast-secure
Payfast is PCI compliant, PCI DSS stands for Payment Card Industry Data Security Standard and is a PASA (Payment Association of South Africa) regulation in South Africa. This means any company accepting credit card payments on their website needs to comply in some way.
When you accept card payments on your website, you need to make sure you process cardholder data in a secure environment and this is where PCI compliance comes in. Luckily, because PayFast is PCI Compliant, you don't have to be, so rest assured all your customer's credit card payments are done in our secure environment.
Reference: https://support.payfast.co.za/portal/en/kb/articles/is-payfast-pci-compliant
Read more about the Payfast’s security here: https://www.payfast.co.za/security-fraud