Security of payment card data is crucial in the online world. The standard to protect card data is the Payment Card Industry Data Security Standard (PCI DSS). This is a joint venture between Visa and Mastercard, supported by all banks.

This BricBlok web site is built, maintained and operated using Actinic software, with Actinic Payments as the Payment Services Provider (PSP).

The Directorate of Brick Block Limited (trading as BricBlok) has operated Actinic continuously since 2003 and has experienced actual and attempted credit card fraud resulting from deficiencies with the previous Merchant (card processing) services.

Actinic has always had a major focus on internal security, and implemented asymmetric encryption of card data back in 1997 when nobody was much concerned about any of this. However, because of the threat from hackers and the impossibility of properly securing servers without significant investment, Actinic recommended that no small business should capture card data on their site and they definitely shouldn't store any card data; instead they should use a PSP for both web and MOTO (phone) orders so their servers never see the card details, and the Actinic Payments used by BricBlok provides just such a secure and certified facility.

During your visit to the BricBlok web site whilst viewing products, browsing information, and selecting items to buy using the shopping cart, there is limited need for ‘padlock’ security as no financial (credit card) information is requested. Conversely, when you proceed through ordering to the point of entering payment details and are directed to the Actinic PSP site, you will notice the ‘padlock’ symbol on your browser to verify the secure status of this connection.

We take payment security very seriously and operate systems to protect you and us; for example our comprehensive anti-fraud processing includes 3rd Man screening, 3D Secure (Verified by Visa and MasterCard SecureCode), AVS for verifying a customer billing address, and CVV2 (the 3 digit card verification number).

PCI DSS compliance statement of Actinic products used by the BricBlok web site.
In respect of the Actinic Shared SSL, Actinic Payments, and Paypal Pro Direct Payments services provided, Actinic have confirm that:

  • All servers involved reside behind firewalls in secure Data Centres
  • No card data is stored permanently on any Shared SSL server
  • All card information is transmitted across the net using SSL or alternative secure encryption

In respect of the Actinic Business web store operated by BricBlok, we can confirm that:

  • No card data is permanently stored on any Actinic server
  • All card information is transmitted across the net using SSL or alternative secure encryption.
  • All storage of card data on the desktop is securely encrypted.

Information on PCI-DSS can be found at https://www.pcisecuritystandards.org.

If you would like to discuss payment security further before you purchase please contact Andrew Bush (Director) on 0845 130 3995.