Payment security information

The council does not store credit card details on our online Dash permit solution. The payment pop-up is supported by Credit Call and the Payment Service Provider (PSP), and the pop up requires a cookie. The PSP are part of NMI. NMI is a validated PCI DSS Level 1 Service Provider. This is the industry’s highest level of certification. NMI are on Visa’s Global Registry of Service Providers and Mastercard’s Compliant Service Provider List.

When a customer adds a credit or debit card to their account, the system first validates the card number with the PSP. A payment token is then returned from the PSP to the permit solution. Only the token is stored on the website, and only the last four digits of the customer’s credit card. The saved token acts as a ‘right of passage’ for you to make payment on the council’s permit website and when executing a payment. The solution only needs to submit the token to the PSP. It's worth pointing out that the token would be different if you were making payment on another secure website, irrespective of whether the 16 digit card number is the same. The payment solution requires the enabling of cookies in the Safari web browser and instructions on how to do this are included on the webpages.

Page last updated: 04 January 2022

}

Privacy settings