Online payment security
All transactions are processed through reliable payment providers certified under the international PCI DSS standard. Data is transmitted via a secure connection using TLS 1.2. Joom does not store card data — input and processing are handled exclusively by the payment provider.
What is PCI DSS and why is it important?
PCI DSS (Payment Card Industry Data Security Standard) is an international set of requirements designed to protect payment card data: card number, expiration date, CVV, etc. Compliance with PCI DSS is mandatory for online commerce.
What is PSD2 and how does it affect users?
PSD2 is a European directive on payment services. It requires:
- Strong Customer Authentication (SCA) for online payments, including two-factor authentication;
- The ability to pay not only via bank cards but also through other services;
- Strict regulation of third-party access to banking data.
What is 3D Secure and how is it related to SCA?
3D Secure is a technology that provides additional protection (under PSD2/SCA). During payment, you may be redirected to a secure bank page to confirm:
- An SMS code;
- A push notification;
- Biometric verification.
If these steps appear, it means your payment is being processed through a verified security mechanism.
What should you check before entering payment information?
Make sure that:
- There is a "🔒" icon in the address bar and it starts with https:// — this means the connection is secure;
- The domain name is spelled correctly (e.g., joom.com, not "j0om.com" or "jooom.com");
- You have not been redirected to an external website — all operations should be performed within Joom.
What should you do if something goes wrong?
If you encounter a suspicious page, receive an unexpected OTP request, or notice errors/phishing attempts — immediately report it to Joom support. This helps prevent fraud and protects other accounts.