Online Transaction Processing
All transactions made with credit or debit card details on the InstantLegit.com website are entered on a secured page using 256-bit SSL encryption.
To collect payments we use one of the top worldwide payment processor STRIPE.
Stripe has been audited by a PCI-certified auditor and is certified to PCI Service Provider Level 1. This is the most stringent level of certification available in the payments industry.
All card numbers are encrypted at rest with AES-256. Decryption keys are stored on separate machines. None of Stripe’s internal servers and daemons can obtain plaintext card numbers but can request that cards are sent to a service provider on a static allowlist. Stripe’s infrastructure for storing, decrypting, and transmitting card numbers runs in a separate hosting environment, and doesn’t share any credentials with Stripe’s primary services (API, website, etc.).
CloudFlare are PCI compliant – The PCI Data Security Standard specifies 12 requirements for compliance, organized into six logically related groups called “control objectives”. Each version of PCI DSS has divided these 12 requirements into a number of sub-requirements differently, but the 12 high level requirements have not changed since the inception of the standard.
– Install and maintain a firewall configuration to protect cardholder data
– Do not use vendor-supplied defaults for system passwords and other security parameters
– Protect stored cardholder data
– Encrypt transmission of cardholder data across open, public networks
– Use and regularly update anti-virus software on all systems commonly affected by malware
– Develop and maintain secure systems and applications
– Restrict access to cardholder data by business need-to-know
– Assign a unique ID to each person with computer access
– Restrict physical access to cardholder data
– Track and monitor all access to network resources and cardholder data
– Regularly test security systems and processes
Safe & Secure Online Transactions
InstantLegit.com is concerned about security and makes every effort to ensure our transaction process is safe and that your personal information is secure.
Read the following advice to ensure your online shopping experience is as safe and secure as possible.
InstantLegit.com will never e-mail or call you to ask you to disclose or verify your InstantLegit.com password, credit card or bank account number. You should only give out this information directly on the InstantLegit.com website or when you contact InstantLegit.com directly.
If you are contacted or receive an unsolicited e-mail which asks you to confirm or provide your InstantLegit.com password or personal or banking information, disregard the request and report the incident to InstantLegit.com for investigation.
Protect Your Password. Make it difficult to guess
Passwords are case sensitive. For instance, “PASSWORD” and “Password” are two different passwords.
It’s best to avoid passwords that are easy to guess such as “password” or “123456789”. We also suggest that you avoid using your name, e-mail address or other personal information that may be easy to obtain.
Though it’s not a requirement, adding numbers or special characters to your password will make it even stronger. For example, the password “InstantLegit12#” is a much stronger password than “InstantLegit”.
If using a public computer (such as in a library or Internet cafe always log out when you’ve finished using InstantLegit.com
Keep your passwords to yourself. Anyone who knows your password can access your account. Do not write down your passwords.
Avoid using the same password for accounts on different websites.
It is good security practice to change passwords regularly.