Security

Security is one of the most important factors in electronic payments. EveryPay has taken all the necessary steps to provide the most secure services.

Trading Privacy

EveryPay is a Payment Institution licensed by the Bank of Greece. All information transmitted to EveryPay is confidential.

PCI – DSS

In today’s environment, transaction security is a key issue for all businesses and organizations. EveryPay, as a payment institution, follows all the PCI DSS processes targeted at the industry to:

  • Protect the privacy of its customers.
  • Enhance customer confidence, through a higher level of data security.
  • Fortify its customers from financial losses and ‘repair’ costs.
  • Maintain trust and protect the reputation of its clients.
  • Implement, with EveryPay PCI-DSS certification, the required security policy, which is evaluated by ongoing audits by an external independent security auditor.

Encryption

From the beginning to the end of your online session, all your information and personal information is encrypted, using the 128-bit Secure Sockets Layer (SSL) encryption protocol. Encryption is essentially a way of encoding information until it reaches its designated recipient, who can decode it using the appropriate key. Every time you pay with EveryPay, all communication between your computer and EveryPay’s systems is encrypted, using the Trust’s 128 bit EV key (the top cryptographic key in banking) meaning, every time you send information to the system, your browser first encrypts it using a 128 bits key and then sends it to the system. The EveryPay system first decrypts the information it receives using the same key (predetermined when you start your connection to the service) and then processes it. EveryPay systems send you information using the same encryption process.

Securing Data Transfer

We use the EV SSL-128bit encryption protocol to ensure confidentiality of data transfer.

Controlled Access

Access to EveryPay systems is controlled by firewalls, which allow customers / visitors to use specific services, while blocking access to EveryPay systems and databases with confidential information. For maximum data protection, and as required by the PCI-DSS standard, EveryPay uses state-of-the-art malware detection systems (Intrusion Detection and Denial of Service Protection Systems). EveryPay hosts all of its infrastructure in the most advanced cloud service in the world, namely AWS. Only authorized employees have access to the data servers. All necessary security patches are implemented immediately with the detection of a potential threat. All systems have followed a strict hardening procedure as per PCI-DSS standards.