Secure payments

Legal basis and standards

Directive EU 2015 2366 PSD2 and the strong customer authentication rules, including Commission Delegated Regulation EU 2018 389. Personal data protection: Regulation EU 2016 679 GDPR.

Payment processing

Payments on the online shop are processed by regulated payment service providers. Great Technology does not store full card numbers, card security codes or equivalent sensitive authentication data on its own systems when the customer pays online. Card security and processing are handled by the payment provider according to industry standards, including PCI DSS requirements where applicable.

Strong customer authentication

Strong customer authentication may be required, for example 3D Secure, depending on the payment method, the issuing bank, the transaction context and the risk analysis performed by the payment provider. If authentication fails or is refused, the order cannot be completed and no contract is formed for that transaction.

Anti fraud controls

Anti fraud controls may include automated checks, confirmation requests or temporary holds. Where a payment is authorised but later rejected, reversed or charged back, Great Technology may suspend delivery, cancel the order, and may request an alternative secure payment method before shipping.

Refunds and banking timelines

Refunds are performed through the same payment method unless the customer expressly agrees otherwise. The effective credit on the customer account depends on banks and providers and may appear between 7 and 30 calendar days from refund approval.