It was prevalent with the older generation. You would give your details over the phone to order those gimmicky infomercial products. You'd do it to order factory deals. And so forth.
The US CC companies have multiple protection mechanisms. Like checking your regular shopping habits, location, and more. Then you can freeze your card and open disputes over transactions, with the possibility of getting them reversed.
Would I worry about an employee taking the CC info and running off? Nah. At most petty thieves spend less than $100 before the card triggers a red flag.
Would I worry about hackers? Yup. These companies are so far behind it could be written into a Shakespearean tragedy.
Questions to ask:
The US CC companies have multiple protection mechanisms. Like checking your regular shopping habits, location, and more. Then you can freeze your card and open disputes over transactions, with the possibility of getting them reversed.
Would I worry about an employee taking the CC info and running off? Nah. At most petty thieves spend less than $100 before the card triggers a red flag.
Would I worry about hackers? Yup. These companies are so far behind it could be written into a Shakespearean tragedy.
Questions to ask:
- Do they have SSL on their site?
- Do they store the CC info on their own servers? - What database & encryption do they use? Or does a CC processor take care of it?
- How susceptible are they to social engineering? If you called them right now, would their IT dept just tell you all of the above? (Just knowing what db and encryption type can help a hacker get in faster)
- Do they print this info off and hold it in a physical folder?
- Who handles the info? A controller behind a locked door or the front desk assistant?