Security

How secure is the transaction data?

The transaction data is transmitted to the payment gateway using secure, encrypted https. This is the same technology that protects millions of e-commerce transactions everyday.

The application follows the PCI (Payment Card Industry) standards for dealing with credit card data on the device.

No data is ever transmitted to our servers, or any other third party, even in summarized form, and no usage data is collected. The sole exception is when Merchant for Android contacts our servers to determine if a new version is available, it does send the version of the application that is currently in use.

If advertising is ever added to the application, I may collect and transmit the number of views and clicks on the advertising link, and update this policy accordingly.

 

Can I store information for recurring customers?

Storing credit card information on a mobile device would be an extremely dangerous proposition and is something that will probably never be supported directly.

What will be implmented at some point in the future is the ability to store information securely on your gateway, using additional services such as Authorize.net's Customer Information Manager or Quantum's Vault. These services produce a unique identifier that allows you, and only you, to charge a previously stored card, but does not allow you to retrieve the card information.

Can I store information for later processing if I'm out of a coverage area?

It would be difficult if not impossible to implement this in a PCI (Payment Card Industry) compliant way.