The Sage Pay payment system uses a combination of established and innovative techniques to ensure the security and integrity of all sensitive data. Their internet facing web servers are certified by Verisign. This ensures that no third-parties can impersonate Sage Pay to obtain secure information

Transaction Security: The transfer of the less sensitive transaction details from the retailer's site to SagePay is encrypted and digitally-signed. This ensures that the information passed is secure and tamper-proof.

Security for the Shopper: Any communication between the customer and Sage Pay is encrypted to the maximum strength supported by the customer's browser. The customer is also protected from fraudulent use of their card in a "card not present" environment, by their card issuer.

Data Storage: All data stored on Sage Pay systems is held on encrypted and highly secured databases. Sage Pay are regularly audited by Visa and MasterCard to ensure that their systems conform to the latest security standards.