Gossamer Forum
Home : Products : Gossamer Links : Pre Sales :

Paying for Links SQL

Quote Reply
Paying for Links SQL
I don't want to use your online order form -- sorry, it just doesn't look secure enough.

I would to like to pay by direct transfer.
To do that we need to know your bank, account number, etc.
If you don't want to make this information public, would you email me privately, please?



Quote Reply
Re: Paying for Links SQL In reply to
Contact them directly:

http://www.gossamer-threads.com/contact/

Regards,

Eliot Lee
Quote Reply
Re: Paying for Links SQL In reply to
What is "secure enough" ?

This is something that has always irked me since the 1980's and the "carbons" hysteria.

It's actually _more_ secure to email your credit card information, than to email or publically post bank account information. Credit card transactions are (and always have been) "secure".

"Secure servers" provide extremely false sense of security, since you have no idea what is on the other end of the secure server. Is it a fax machine at the local Mail Drop? Or perhaps an email to a free-mail account on a public server.

I feel much more "secure" emailing that information directly to someone's email box, especially if I know they have reasonaby good email security.

What are the odds of having any email transaction intercepted?

Do you hear reports of people who emailed their credit card information to a legitimate email address/company and have had a problem?

What about the large "secure" servers that are hacked into on a weekly basis now, with 1000's of names/addresses/card information and other identifying information stolen?

Realistically, what is the pay off for someone to try to trap your email going to GT, to look for a possible credit card that _might_ have enough credit on it for them to do something -- or might not. Maybe it's just enough to get them caught. What's the pay off?

This is an old debate, and it preys upon the people's "fear" of the unknown.

Actually a wire transfer, since it involves several human interactions at the bank, is actually _LESS_ secure than an email message.

If you are setting up to do business, learn the real "risks" of email and "secure" transactions. Don't be fooled by the term "secure". Realize that what "secure" and "secured" mean to you is VERY different from what the general public feels it means. They see a "secure" server and most feel it's a good thing. It affords them peace of mind. For you, a "secure" server means your transactions are being processed and you are going to get paid without charge backs, withholdings, or other funny business.

Anyway, MC/Visa is still the best way to pay for things, even if you send the information in an email. If you are extremely worried, send the information in 2 emails. To use a credit card for anything of value, a merchant checks the number, the expiration date and even the address. The cards are of no "value" without that.

I have more problem deciding to use a merchant, than whether to send the credit information. The biggest decision is are they honest, and will I get the product as I expect -- not worrying about the payment.

Most stories of credit card problems are anecdotal and Urban Myth.

PUGDOGŪ
PUGDOGŪ Enterprises, Inc.
FAQ: http://pugdog.com/FAQ


Quote Reply
Re: Paying for Links SQL In reply to
Hi pugdog ... thanks for taking the time to explain how GT process credit card orders.

They don't explain it themselves -- there is nothing on their order form which tells us where the credit card details are going, or how they will be processed.

I think I am less paranoid than most people, and not influenced by urban mythology -- but I do want to know what is happening ...

Anyway, I feel more reassured about the credit card thing. On the other hand, I am more used to paying by direct transfers. There is a slight extra cost, which would be borne by me, not by GT.

I think it is good business sense to allow customers to pay the way they want to pay -- or if not possible, to explain the procedure in detail.



Quote Reply
Re: Paying for Links SQL In reply to
In Reply To:
Contact them directly:
I did ...

... and I just got a very helpful email from GT which has set my mind at rest.

Quote Reply
Re: Paying for Links SQL In reply to
Hi,

For anyone else curious to what happens when you hit submit:

1. The credit card number is transmitted via SSL (encrypted) from your browser to the server.
2. A script on the server processes the order, and uses PGP to encrypt the email which gets sent to our staff for processing. No copy of the credit card is ever stored on a computer with a direct connection to the internet, nor is the information ever sent through the internet unencrypted.

Cheers,

Alex

--
Gossamer Threads Inc.