How can we help?
Your application must not send credit card data to your server, it must be done browser-to-Omise only - so that our fraud detection system can perform correctly and for card data security.
Sending credit card data to your servers is not allowed by the PCI (Payment Card Industry) Council. It should be done only if you are currently PCI-DSS compliant and have compelling reasons to do so.
Sending the credit card data from your server to Omise will result in temporary or permanent account suspension.
Omise is a PCI-DSS 3.2.1 compliant company. All servers are secure and compliant with the most strict standards from the PCI council.
Can’t find your answer?
Get in touch with us and we’ll get back to you as soon as possible