Apply Now
  Apply online now for a merchant account with ECI
Retrieve Application
  Retrieve a previously-started merchant account application
  Login to your ECI-PAY account
(U.S. merchants only)
Update Billing Information
ECI-Pay Secure Ecommerce Gateway
The ECI-PAY gateway has security measures in place to protect the loss, misuse and alteration of the information under our control. Security of information in transit to and from our web site is encrypted using SSL encryption protocols. We store all user information in secure databases protected via a variety of access controls as well as using encryption of sensitive information. ECI has been providing credit card processing services over the Internet for over 6 years. Currently we process credit card transactions for over 16,000 merchants worldwide.

Security systems are designed and upgraded in concert with Sun Microsystems and RSA Security and are Eyes Only. Our policy is to report and aggressively pursue, apprehend and prosecute any attempts to breach our systems. To date there have been no successful attempts.

This is a brief overview:

Redundant Sun Microsystems Enterprise 3500 payment-dedicated network servers with four Ultra Sparc processors with at least 1 gigabyte of RAM per unit, running UNIX and the most recent version of Solaris. Our system also features symmetrical failover using Veritas Firstwatch and HA for Oracle, and sits behind a Cisco PIX Firewall which also has redundant failover.

Our payment servers are housed at Level (3) facilities in New York City, a state-of-the-art global network that sets new standards for the industry ( Physical access protected with biometric (palm scan) identification; Uninterruptible Power Source (UPS) with generator back-up; 24 x 7 worldwide network monitoring. Access to servers is protected via cardkey, palm print and key lock.

All credit card numbers are stored on our Oracle-dedicated Sun E3500 database server.

All credit card numbers are encrypted in real-time within the database using 512 bit RSA Crypto-C technology. RSA Security submits its Crypto-C products for FIPS 140 testing and certification. FIPS 140-1 and the forthcoming FIPS 140-2 are the US Government's standards that specify the security requirements to be satisfied by a cryptographic module. RSA Security supports PNP Security with over 20 years of experience in the security industry.

Home | Support | About Us | Contact Us
Electronic Commerce International is a registered ISO/MSP for HSBC Bank USA, National Association, Buffalo, NY.