Category Archives: Data Security

Data protection predictions for 2021

2020 presented us with many surprises, but the world of data privacy somewhat bucked the trend. Many industry verticals suffered losses, uncertainty and closures, but the protection of individuals and their information continued to truck on. After many websites simply blocked access unless you accepted their cookies (now deemed unlawful), we received clarity on cookies from the European Data Protection Board (EDPB). With the ending of Privacy Shield, we witnessed the cessation of a legal … More

The post Data protection predictions for 2021 appeared first on Help Net Security.

How tech trends and risks shape organizations’ data protection strategy

Trustwave released a report which depicts how technology trends, compromise risks and regulations are shaping how organizations’ data is stored and protected. Data protection strategy The report is based on a recent survey of 966 full-time IT professionals who are cybersecurity decision makers or security influencers within their organizations. Over 75% of respondents work in organizations with over 500 employees in key geographic regions including the U.S., U.K., Australia and Singapore. “Data drives the global … More

The post How tech trends and risks shape organizations’ data protection strategy appeared first on Help Net Security.

Global adoption of data and privacy programs still maturing

The importance of privacy and data protection is a critical issue for organizations as it transcends beyond legal departments to the forefront of an organization’s strategic priorities. A FairWarning research, based on survey results from more than 550 global privacy and data protection, IT, and compliance professionals outlines the characteristics and behaviors of advanced privacy and data protection teams. By examining the trends of privacy adoption and maturity across industries, the research uncovers adjustments that … More

The post Global adoption of data and privacy programs still maturing appeared first on Help Net Security.

eCommerce Payment System – How to Choose the Best One for Your eCommerce Startup?

There are 3,4 million digital payment system users worldwide. This figure is almost equal to the number of social media users globally and the half of word’s population to date. It is a strong enough reason to believe that online payments dominate the ways we pay for goods and transfer money. What is more, online payments for e-commerce websites are the features your online store can’t do without. So, here are all the answers to your “how” and “why” questions.

What Is an E-Payment System and Its Types?

An electronic payment system is special software that works as an intermediary the payer and the recipient of funds. In most cases, online payment systems work as non-interested parties, that is, they are only responsible for the money transfer, but not for the honesty of the relationship between the seller and buyer.

Using online payments, none of the parties need physical mediums like cash or checks. All the necessary documents and reports are formed automatically and online to be printed by any of the parties anytime.

Here are the main types of electronic payments.

  • Automated clearing house (ACH)
  • Wire transfers.
  • Item processing (IP)
  • Remote deposit capture (RDC)
  • FedLine Access Solutions.
  • Automated Teller Machines.
  • Card Services (ATM, credit, debit, prepaid)
  • Mobile payments.

What Are the Benefits of Using E-Payment Systems

  • Electronic commerce was invented to make shopping more comfortable and convenient. E-commerce payment system contributes to this goal even more.
  • Cash flows are difficult to track. This is the opinion of governments, financial institutions, business owners and a lot of ordinary people too. However, it is always easy to find put how do you spend a certain sum just be checking your financial or accounting app.
  • Electronic payments are almost instant, as well as traditional money hand-to-hand transfers. However, there is a strong reason not to do it now.
  • While other businesses suffered from a pandemic or even were completely banned, financial technology felt better than ever. Yes, precisely because it has become the safest way to use money without physical health risks. According to the recent research by BIS, “Research in microbiology examines whether pathogenic agents, including viruses, bacteria, fungi, and parasites can survive on banknotes and coins. Some viruses, including human flu, can persist for hours or days on banknotes, The Covid-19 virus can also survive on surfaces.” However, electronic payments protect you, your staff, and your customers from infection risks.

What Is the Role of an Online Payment System in E-Commerce?

Online payment is the main way to pay for the goods purchased from branded websites. What is more, there is almost no sense in the concept of e-commerce itself is there is no possibility to pay for the goods online since electronic commerce involves 100% electronic interaction between a company and a customer.

Yes, there is still cash on delivery option, which by the way, may have some benefits, but most online transactions are launched and completed online with the help of an electronic payment system in e-commerce.

What Are the Payment Options You May Choose for Your Ecommerce Store?

Here are the payment options that may potentially suit your eCommerce project. Leading e-commerce brands are using all of them at once, and it greatly contributes to the development of good relations and trust.

However, not all the alternatives may be needed for your startup since each e-commerce idea is specific. Find out what do your potential customers expect before utilizing any of them.

Credit/debit  cards In practice, this approach realized as a system that allows entering a user’s card data, receiving a confirmation code from a banking app, and completing a deal on the website.
Bank Transfers This approach is used in B2B e-commerce since corporate clients often prefer to make bank transfers and be sure in clarity of reports.
EWallets E-wallets are also convenient options that allow users to pay without revealing their banking details.
Mobile payments Mobile payments are on the rise of popularity. ApplePay and GooglePay are the most used systems.
PayPal and other gateways PayPal is the most popular payment system worldwide, however, there are others, less popular but no less usefull solutions your customers may also prefer.
Cryptocurrencies Since a lot of countries are making efforts to legalize cryptos, they are one more way to pay for the goods or services purchased online.
Cash on Delivery Cash on delivery is still required by some customers, especially if there is no trust between a newly created company, or the company addressed for the first time, and the client.

What to Look for While Choosing the E-Payment System?

As you can see, the e-payment market has a lot of offers for your e-commerce store. Here are the main factors you should take into account making the final choice.

  • Preferences of your customers. There are a lot of alternatives to choose from, however, your best electronic payment system is the one that suits your customer most. If you know that your customers are corporate clients, it is better to give them the opportunity to make bank transfers. If they are young shoppers, they most probably prefer e-wallets, PayPal, and mobile payments.
  • This is one of the most important factors since the security of the payment on your websites is one of the things that contribute to your reputation. that is why it is better to choose such a payment system that has strong protection, support service as well as embedded e-commerce fraud detection features.
  • UX impact. The best electronic payment system is one more way to provide users with a great experience when completing a transaction with you. That is why the payment system should be fast-processing, reliable, and convenient.
  • Performance metrics. Find out whether it would be profitable for you to use this or that system from the point of view of commissions, fees, and reporting.

Surely, it should be more than one option for payments for an e-commerce website. That is why you should compare and analyze the most popular alternatives and integrate your  with the most reliable and demanded by your users’ ones.

What Is the Best Online Payment System?

Here is the infographic that shows the most popular online payment systems in the USA. but since the greatest number of online shoppers is USA based, it may seem that these are the most popular systems in the world too. However, keep in mind one important note. If you are going to create a multilingual e-commerce store and reach the target audience from different countries, some e-payment systems may not be supported there or may be poorly known among customers from a specific country.

Top 5 payment

How Do I Add a Payment System to My Website?

There are several ways to add a payment system to your website.

  • If you are just going to create an eCommerce store and want to do it with the help of WordPress, you may choose the themes with payment system integration in advance.
  • If you have a ready-made website designed by you, you may contact the support service of the payment gateway provider, and set up the system following their instructions.
  • If your e-commerce project was created by a development company, ask them to make some changes and add more payment systems to your platform.

Conclusion

As you can see, the meaning of e-commerce as such is lost if there is no possibility to pay for the goods or services online. That is why payment system integration is an important stage of eCommerce store development. The choice of the most suitable solutions should be based on the careful market and your target audience analysis. What is more, the most popular payment systems are not always the most suitable ones  – sometimes there is a need to come up with a system from scratch to satisfy the business needs. Make sure to get in touch with a reliable vendor and ask for help.

The post eCommerce Payment System – How to Choose the Best One for Your eCommerce Startup? appeared first on Hacker Combat.

The Schrems II Decision: The Day After

This blog is for information purposes only and it does not constitute legal advice or advice on how to achieve operational privacy and security or compliance with laws or regulations.

The European Court of Justice (“CJEU”) yesterday invalidated the Privacy Shield, an agreement between the European data regulators and the U.S. Chamber of Commerce created in 2016 that allows businesses in the European Union to transfer data to the U.S.  The Court said Privacy Shield, which is used by more than 5,000 companies (though not McAfee), does not comply with European privacy rights.

The decision is seen as one of the most important international privacy cases in recent history and arose from a complaint against Facebook brought to the Irish Data Protection Commissioner by Max Schrems.

Schrems has been challenging the transfer of his data (and the data of EU citizens generally) to the United States by Facebook, which has its European base in Ireland. His first case (“Schrems I”) led the Court in 2015 to invalidate the Safe Harbor arrangement, a prior arrangement governing that data transfers from the EU to the US. The Safe Harbor scheme was replaced by the EU-US Privacy Shield on July 12, 2016, in response to the case.

The Court gave two major reasons for its decision (“Schrems II”) that the European Commission was wrong to say the Privacy Shield adequately protected the data of EU residents.  The Court said that

  • S. surveillance programs are not limited to what is strictly necessary and proportional and hence do not meet the requirements of Article 52 of the EU Charter on Fundamental Rights;
  • EU data subjects lack actionable judicial redress with regards to U.S. surveillance, and, therefore, do not have a right to an effective remedy in the U.S., as required by Article 47 of the EU Charter.

Additionally, the CJEU ruled that:

  • Standard Contractual Clauses (“SCCs”), which are currently being reviewed by the European Commission, and Binding Corporate Rules (“BCRs”) remain valid mechanisms for transferring data outside of the European Union;
  • BUT companies must verify, on a case-by-case basis, whether the law in the recipient country ensures adequate protection, under EU law, for personal data transferred under SCCs and, where it doesn’t companies must provide additional safeguards or suspend transfers. The ruling placed the same requirement on EU data protection authorities to suspend such transfers on a case-by-case basis where equivalent protection cannot be ensured.

We’ve been starting hearing some myths that need debunking:

  • Myth 1: Keeping data in Europe is the ONE solution. Well no, it isn’t. The internet is Global, the Cloud is global and data localization may not prevent the application of the U.S.’s Cloud Act;
  • Myth 2: The U.S. will need to change its laws: Not so fast! This may help,  but will take some time, and to meet what the Court wants will require changes both to the Patriot Act and a new recourse means – no small ask of a U.S. Congress when the House and the Senate are working well together, much less in the middle of a pandemic with a lot of political divisiveness;
  • Myth 3: This only concerns the U.S. Nope, government surveillance (and secretive surveillance) exists almost everywhere – and is necessary, including in the European Union and in some of the jurisdictions that the EU has said have adequate protections.  This ruling could open the door for many uncomfortable conversations with jurisdictions that have thought they were safe in the past.
  • Myth 4: The ruling says that European companies must stop using U.S. service providers, especially Cloud service providers. No, that’s again bashing multinational corporations which abide by the strictest security standards.

From a practical standpoint, what are the changes?

  • Companies that used to transfer data under the Privacy Shield should consider signing SCCs and may want to think about a project to put in place BCRs;
  • SCCs may need to be amended to add additional language so to provide additional safeguards when faced with access requests by public authorities around the world.

What does this mean for McAfee customers? McAfee is committed to adhering to the applicable laws.  We are glad to sign SCCs with customers.  We have done a lot of work to make sure that our products were ready for the GDPR, and continue to track the regulatory and judicial changes.  We’re glad to talk to you about this and other issues, contact us here.

 

The post The Schrems II Decision: The Day After appeared first on McAfee Blogs.