Zoho Payments Logo
🇮🇳 India

Security

Zoho Payments follows strict security, compliance, and regulatory standards to protect sensitive customer data and ensure secure transactions. It adheres to PCI DSS Level 1 standards, providing a trusted environment for handling payment information.

Security for Merchants

Zoho Payments has implemented the following security measures for merchants.

Secure Network Connections

All communications from Zoho Payments are secured using HTTPS with TLS 1.3 (Transport Layer Security) encryption, ensuring that data transmitted via the website, dashboard, widget, APIs, and webhooks remains secure. This prevents unauthorised access and keeps your transaction data safe during transmission.

Multi-Factor Authentication

To keep your Zoho Payments account secure, Multi-Factor Authentication (MFA) is mandatory when creating your account. This extra layer of security helps protect your account by ensuring only you can access it.

Re-authentication for Sensitive Actions

For critical actions such as API key generation or updating account details, business profile, owner, representative details, and bank account, Zoho Payments requires additional authentication to prevent unauthorised changes.

Role-Based Access Control

The account owner or admin can assign role-based access to different users within your organisation. This ensures that employees only have access to the modules and data necessary for their role, minimising security risks.

Security for Customers

Zoho Payments has implemented security measures to protect customer data and ensure secure transactions.

Secure Network Connections

Zoho Payments requires HTTPS connections for all customer interactions, ensuring that data transmitted over the internet is secured with TLS 1.3 encryption.

Payload Encryption

Zoho Payments employs payload encryption for APIs within the checkout widget, ensuring that customer payment data is encrypted before transmission.

PCI DSS Compliance

Zoho Payments is PCI DSS Level 1 certified, ensuring that cardholder data is processed, stored, and transmitted securely, keeping your business compliant with global security standards.

These comprehensive security measures help maintain a secure and compliant environment for both merchants and customers.

crose-icon

Get a personalized demo from our experts

Oops! We didn't catch your name.

*
*

Looks like you forgot to give us your number.

*

Looks like you forgot to give us your convenient time.

*

Please select your industry type.

*

We can wait. Take your time to draft us your question.

*

By submitting this form, you agree to our Privacy Policy.