Edit- so your reply and Sushubh's reply partly helped understand that it has something to do with ensuring safety of customers card detail. So why ecommerce stand to loose?
They anyways did not had resources to implement proper safety as per PCIDSS standards. They must already be using some payment gateway and all of them are compatible with tokenisation.
What happens to stored details do they become useless? And transction would be declined without token or something. How can they differentiate if I am manually entering card details or its presaved by merchant?
Shit companies like mobikwik will never completely delete their data backups. Hopefully next time there will be a breach they can be penalized for illegally storing data.
No they won't become useless and any rogue website can keep using it. Even the international ones will show middle finger to RBI. Whichever website used to store your card, they already had your card number and expiry and would ask you to just put the CVV. They then transmit that card to the PG for transaction processing and same will continue to happen.
This website uses affiliate links. This means that if you click on a link and make a purchase, we may receive a commission. This does not affect the price you pay for the product.
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.