The owner of the Internet shop taking in the payment via card or transfer should always check if the company with which the contract is signed has appropriate permission for running a business. Both the rules and appropriate permission aim to ensure the safety for Internet shops and for Customers transferring the money. These aims are being realized by putting such demands and audits which improve the company’s activity.

Dotpay Ltd. operates in accordance with the guidelines of the Financial Service Authority (Directive The Regulation of Electronic Money Issuers), involving companies providing service of financial transactions in the UK and the European Union (a status equivalent institutions Settlement Agent in Poland), as well as it is declared in HM Customs and Excise, which keeps a record and supervision of institutions conducting the activities of a financial intermediary (the transfer of funds between the payer and the recipient).



Dotpay is the safest on-line payment system in Poland. The appliance of strict procedures and the latest technologies, supported by the professionalism and experience of our staff, has led to the recognition of Dotpay as the best payment transactions service for Internet stores, companies, and between individuals.

Below you will find short descriptions of security software being used by Dotpay:

PCI DSS Certificate 

Dotpay has been awarded a certificate of Payment Card Industry Data Security Standard (PCI DSS), Visa Cardholder Information Security Program (CISP), Visa International’s Account Information Security (AIS), MasterCard International’s Site Data Protection (SDP), American Express Data Security Standards (DSS) and Discover Card’s DISC as Service Provider.

Payment Card Industry Data Security Standard (PCI DSS) is a world standard set by the payment organisations to secure personal data of a card holder and any information related to personal data. PCI DSS standard fulfills the organisations’ requirements as well as strengthens customers’ trust in performing payments via internet.

According to payment organizations requirements all companies dealing with online payments should comply with strict security standards of PCI DSS. Dotpay confirmed to comply with Visa, Mastercard, American Express and Discover requirements.

McAfee SECURE cerificate

SECURE McAfee research confirms and certifies the already tested devices according to the security policy and Department of Homeland Security’s National Infrastructure Protection Center (NIPC) requirements. Multinational reputable McAfee laboratories are the leader on the net security market. McAfee certificate awarded to Dotpay S.A. states that Dotpay complies with security procedures providing the highest level of hackers’ resistance. Such a document has been awarded to Yahoo!, Lycos, and Amazon.

Security researches conducted by McAfee Inc. on daily basis confirm that Dotpay is the most secure online payment service, which successfully secures data and the system against hackers’ attacks.

Thawte Web Server Certificate with EV (Extended Validation)

SSL certificate with an advanced validation with 256 bit coding providing the highest level of Internet webpage owner’s standard authorization. Any information sent between a user and a server is not used by the third party.

The certificate prevents from any data or information stealing which could be used to make a payment by the third party. Dotpay transaction webpages are shown on the green label for buyers and payers using online Dotpay.

SSL Certificate

SSL is a network protocol applied to secure internet connections. SSL realizes encoding, server authentication, ensuring integrity and information confidentiality. Accessing a secure website (one that employs SSL protocol) happens simultaneously to the determination of algorithm and coding keys that are subsequently applied to data transmission between browsers. The SSL protocol is one of the methods used to ensure financial transaction security.

In Dotpay data transmission is coded with 128-byte long protocol. To crack the 128-bit key
would take 1 billion x 1 billion years. Dotpay completes the most restrict bank security requirements.



Dotpay pays a great attention to its customers personal data protection. Confidentiality principles are available on Dotpay websites to all parties concerned. As data administrator, Dotpay SA ensures that the data submitted is secure. The data is protected and secured especially against access by unauthorized persons. Your personal data is processed exclusively for the purpose of Dotpay services.

Information concerning you can be disclosed to authorized public bodies. Dotpay SA grants you access to your own data, a right to demand the data update and cancellation.

What information do we gather and what do we do with it?

In line with the general rules for Internet connections, information contained in system logs (e.g. IP address) is used by Dotpay for technical purposes related to our servers administration. Dotpay uses cookies in order to supply services and content. In some cases, identification and customized (personalized) access to services rely on cookies. However, it is most often the case that the user’s authorization, at least one, with a password is necessary during a session. Inactive cookies in the browser usually do not unable the use of our services, however, it can cause certain inconvenience. 


We invite you also to the company's website