Showing “this is secure” on credit card entry screen

The name of the pictureThe name of the pictureThe name of the pictureClash Royale CLAN TAG#URR8PPP





.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty margin-bottom:0;







up vote
2
down vote

favorite












Should I show some sort of "this site is secure" puffery (e.g. lock image, or some brief "this site is secure" boilerplate) on my credit card payment screen? If so, what should it look like? If not, why not?



I do want my customers to feel confident (as well as actually be safe) if they choose to enter their credit card details to pay my clients. I also want them to learn a healthy cynicism. Most of my customers are likely to have a very low level of technical knowledge about internet security and are usually either too trusting, and (in some cases) too suspicious of the wrong things.



I even had a customer call me up saying he wasn't sure if my payment page was secure because it didn't have any "padlock" image within the page. (yes, the page had a valid ssl certificate, the customer had the correct URL, and his version of Chrome was showing it with the green padlock with the "Secure" label at the time - after pointing this out he was happy to proceed).



I just feel it's a bit strange to splash a "this is secure" badge on a page because I know it means nothing, technically - because a phishing page would just as easily show the exact same badge.



Assumption: that my site is actually secure (let's just say I've tried my best and will continue to improve as much as possible).



For reference, here is the page as it currently stands:
enter image description here



Here's a mockup of what I mean:
enter image description here






security







share|improve this question







New contributor




Jeffrey Kemp is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

























    up vote
    2
    down vote

    favorite












    Should I show some sort of "this site is secure" puffery (e.g. lock image, or some brief "this site is secure" boilerplate) on my credit card payment screen? If so, what should it look like? If not, why not?



    I do want my customers to feel confident (as well as actually be safe) if they choose to enter their credit card details to pay my clients. I also want them to learn a healthy cynicism. Most of my customers are likely to have a very low level of technical knowledge about internet security and are usually either too trusting, and (in some cases) too suspicious of the wrong things.



    I even had a customer call me up saying he wasn't sure if my payment page was secure because it didn't have any "padlock" image within the page. (yes, the page had a valid ssl certificate, the customer had the correct URL, and his version of Chrome was showing it with the green padlock with the "Secure" label at the time - after pointing this out he was happy to proceed).



    I just feel it's a bit strange to splash a "this is secure" badge on a page because I know it means nothing, technically - because a phishing page would just as easily show the exact same badge.



    Assumption: that my site is actually secure (let's just say I've tried my best and will continue to improve as much as possible).



    For reference, here is the page as it currently stands:
    enter image description here



    Here's a mockup of what I mean:
    enter image description here






    security







    share|improve this question







    New contributor




    Jeffrey Kemp is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
    Check out our Code of Conduct.





















      up vote
      2
      down vote

      favorite









      up vote
      2
      down vote

      favorite











      Should I show some sort of "this site is secure" puffery (e.g. lock image, or some brief "this site is secure" boilerplate) on my credit card payment screen? If so, what should it look like? If not, why not?



      I do want my customers to feel confident (as well as actually be safe) if they choose to enter their credit card details to pay my clients. I also want them to learn a healthy cynicism. Most of my customers are likely to have a very low level of technical knowledge about internet security and are usually either too trusting, and (in some cases) too suspicious of the wrong things.



      I even had a customer call me up saying he wasn't sure if my payment page was secure because it didn't have any "padlock" image within the page. (yes, the page had a valid ssl certificate, the customer had the correct URL, and his version of Chrome was showing it with the green padlock with the "Secure" label at the time - after pointing this out he was happy to proceed).



      I just feel it's a bit strange to splash a "this is secure" badge on a page because I know it means nothing, technically - because a phishing page would just as easily show the exact same badge.



      Assumption: that my site is actually secure (let's just say I've tried my best and will continue to improve as much as possible).



      For reference, here is the page as it currently stands:
      enter image description here



      Here's a mockup of what I mean:
      enter image description here






      security







      share|improve this question







      New contributor




      Jeffrey Kemp is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.











      Should I show some sort of "this site is secure" puffery (e.g. lock image, or some brief "this site is secure" boilerplate) on my credit card payment screen? If so, what should it look like? If not, why not?



      I do want my customers to feel confident (as well as actually be safe) if they choose to enter their credit card details to pay my clients. I also want them to learn a healthy cynicism. Most of my customers are likely to have a very low level of technical knowledge about internet security and are usually either too trusting, and (in some cases) too suspicious of the wrong things.



      I even had a customer call me up saying he wasn't sure if my payment page was secure because it didn't have any "padlock" image within the page. (yes, the page had a valid ssl certificate, the customer had the correct URL, and his version of Chrome was showing it with the green padlock with the "Secure" label at the time - after pointing this out he was happy to proceed).



      I just feel it's a bit strange to splash a "this is secure" badge on a page because I know it means nothing, technically - because a phishing page would just as easily show the exact same badge.



      Assumption: that my site is actually secure (let's just say I've tried my best and will continue to improve as much as possible).



      For reference, here is the page as it currently stands:
      enter image description here



      Here's a mockup of what I mean:
      enter image description here






      security




      security






      share|improve this question







      New contributor




      Jeffrey Kemp is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.











      share|improve this question







      New contributor




      Jeffrey Kemp is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.









      share|improve this question




      share|improve this question






      New contributor




      Jeffrey Kemp is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.









      asked 3 hours ago









      Jeffrey Kemp

      1155




      1155




      New contributor




      Jeffrey Kemp is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.





      New contributor





      Jeffrey Kemp is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.






      Jeffrey Kemp is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.




















          1 Answer
          1






          active

          oldest

          votes

















          up vote
          3
          down vote



          accepted










          Funny thing, I just did the research on this recently, because we faced the same "issue" in our e-commerce shop.



          There is a good Baymard article referencing exactly this:




          Visually Reinforce the Credit Card Section



          One method we consistently observe to perform well for increasing users’ perceived security of sensitive fields is to visually encapsulate them. This can be achieved simply by using borders, background colors, shading, and other visual styling that will make one part of the form seem more robust than the rest. Remember: this is about perceived security of the fields, not their actual technical security.




          So what we ended up doing, as nonsensical as it sounds, is actually add the word "secure" to the payment headline and a little lock icon near the credit card input field.



          Note: This could be perceived as manipulative (referencing your healthy cynicism point), but I would argue it is simply to calm the user, since the page itself is already technically robust.



          You could also purchase a trust seal for your site, to give your users something to hold on to when judging the seriousness of your shop. The Baymard article references these too.



          Since our shop is already quite known here and trusted we didn't feel the need for one in our case.






          share|improve this answer






















          • Excellent, that's exactly the sort of information I was after.
            – Jeffrey Kemp
            2 hours ago






          • 1




            "In our 2016 tests we also included a completely “homemade / fake” seal not issued by a 3rd party, with no meaning whatsoever beyond the icon itself. Note how the homemade seal performed significantly better than the SSL seals issued by established vendors except Norton. This suggests that beyond strong brand reconizability, it doesn’t matter too much which actual seal is chosen. Rather what’s most important is making sure there’s some kind of visual seal or icon present to indicate the robustness of the credit card fields."
            – Jeffrey Kemp
            2 hours ago










          Your Answer







          StackExchange.ready(function()
          var channelOptions =
          tags: "".split(" "),
          id: "102"
          ;
          initTagRenderer("".split(" "), "".split(" "), channelOptions);

          StackExchange.using("externalEditor", function()
          // Have to fire editor after snippets, if snippets enabled
          if (StackExchange.settings.snippets.snippetsEnabled)
          StackExchange.using("snippets", function()
          createEditor();
          );

          else
          createEditor();

          );

          function createEditor()
          StackExchange.prepareEditor(
          heartbeatType: 'answer',
          convertImagesToLinks: false,
          noModals: false,
          showLowRepImageUploadWarning: true,
          reputationToPostImages: null,
          bindNavPrevention: true,
          postfix: "",
          noCode: true, onDemand: true,
          discardSelector: ".discard-answer"
          ,immediatelyShowMarkdownHelp:true
          );



          );






          Jeffrey Kemp is a new contributor. Be nice, and check out our Code of Conduct.









           

          draft saved


          draft discarded


















          StackExchange.ready(
          function ()
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fux.stackexchange.com%2fquestions%2f120993%2fshowing-this-is-secure-on-credit-card-entry-screen%23new-answer', 'question_page');

          );

          Post as a guest

















          1 Answer
          1






          active

          oldest

          votes








          1 Answer
          1






          active

          oldest

          votes









          active

          oldest

          votes






          active

          oldest

          votes








          up vote
          3
          down vote



          accepted










          Funny thing, I just did the research on this recently, because we faced the same "issue" in our e-commerce shop.



          There is a good Baymard article referencing exactly this:




          Visually Reinforce the Credit Card Section



          One method we consistently observe to perform well for increasing users’ perceived security of sensitive fields is to visually encapsulate them. This can be achieved simply by using borders, background colors, shading, and other visual styling that will make one part of the form seem more robust than the rest. Remember: this is about perceived security of the fields, not their actual technical security.




          So what we ended up doing, as nonsensical as it sounds, is actually add the word "secure" to the payment headline and a little lock icon near the credit card input field.



          Note: This could be perceived as manipulative (referencing your healthy cynicism point), but I would argue it is simply to calm the user, since the page itself is already technically robust.



          You could also purchase a trust seal for your site, to give your users something to hold on to when judging the seriousness of your shop. The Baymard article references these too.



          Since our shop is already quite known here and trusted we didn't feel the need for one in our case.






          share|improve this answer






















          • Excellent, that's exactly the sort of information I was after.
            – Jeffrey Kemp
            2 hours ago






          • 1




            "In our 2016 tests we also included a completely “homemade / fake” seal not issued by a 3rd party, with no meaning whatsoever beyond the icon itself. Note how the homemade seal performed significantly better than the SSL seals issued by established vendors except Norton. This suggests that beyond strong brand reconizability, it doesn’t matter too much which actual seal is chosen. Rather what’s most important is making sure there’s some kind of visual seal or icon present to indicate the robustness of the credit card fields."
            – Jeffrey Kemp
            2 hours ago














          up vote
          3
          down vote



          accepted










          Funny thing, I just did the research on this recently, because we faced the same "issue" in our e-commerce shop.



          There is a good Baymard article referencing exactly this:




          Visually Reinforce the Credit Card Section



          One method we consistently observe to perform well for increasing users’ perceived security of sensitive fields is to visually encapsulate them. This can be achieved simply by using borders, background colors, shading, and other visual styling that will make one part of the form seem more robust than the rest. Remember: this is about perceived security of the fields, not their actual technical security.




          So what we ended up doing, as nonsensical as it sounds, is actually add the word "secure" to the payment headline and a little lock icon near the credit card input field.



          Note: This could be perceived as manipulative (referencing your healthy cynicism point), but I would argue it is simply to calm the user, since the page itself is already technically robust.



          You could also purchase a trust seal for your site, to give your users something to hold on to when judging the seriousness of your shop. The Baymard article references these too.



          Since our shop is already quite known here and trusted we didn't feel the need for one in our case.






          share|improve this answer






















          • Excellent, that's exactly the sort of information I was after.
            – Jeffrey Kemp
            2 hours ago






          • 1




            "In our 2016 tests we also included a completely “homemade / fake” seal not issued by a 3rd party, with no meaning whatsoever beyond the icon itself. Note how the homemade seal performed significantly better than the SSL seals issued by established vendors except Norton. This suggests that beyond strong brand reconizability, it doesn’t matter too much which actual seal is chosen. Rather what’s most important is making sure there’s some kind of visual seal or icon present to indicate the robustness of the credit card fields."
            – Jeffrey Kemp
            2 hours ago












          up vote
          3
          down vote



          accepted







          up vote
          3
          down vote



          accepted






          Funny thing, I just did the research on this recently, because we faced the same "issue" in our e-commerce shop.



          There is a good Baymard article referencing exactly this:




          Visually Reinforce the Credit Card Section



          One method we consistently observe to perform well for increasing users’ perceived security of sensitive fields is to visually encapsulate them. This can be achieved simply by using borders, background colors, shading, and other visual styling that will make one part of the form seem more robust than the rest. Remember: this is about perceived security of the fields, not their actual technical security.




          So what we ended up doing, as nonsensical as it sounds, is actually add the word "secure" to the payment headline and a little lock icon near the credit card input field.



          Note: This could be perceived as manipulative (referencing your healthy cynicism point), but I would argue it is simply to calm the user, since the page itself is already technically robust.



          You could also purchase a trust seal for your site, to give your users something to hold on to when judging the seriousness of your shop. The Baymard article references these too.



          Since our shop is already quite known here and trusted we didn't feel the need for one in our case.






          share|improve this answer














          Funny thing, I just did the research on this recently, because we faced the same "issue" in our e-commerce shop.



          There is a good Baymard article referencing exactly this:




          Visually Reinforce the Credit Card Section



          One method we consistently observe to perform well for increasing users’ perceived security of sensitive fields is to visually encapsulate them. This can be achieved simply by using borders, background colors, shading, and other visual styling that will make one part of the form seem more robust than the rest. Remember: this is about perceived security of the fields, not their actual technical security.




          So what we ended up doing, as nonsensical as it sounds, is actually add the word "secure" to the payment headline and a little lock icon near the credit card input field.



          Note: This could be perceived as manipulative (referencing your healthy cynicism point), but I would argue it is simply to calm the user, since the page itself is already technically robust.



          You could also purchase a trust seal for your site, to give your users something to hold on to when judging the seriousness of your shop. The Baymard article references these too.



          Since our shop is already quite known here and trusted we didn't feel the need for one in our case.







          share|improve this answer














          share|improve this answer



          share|improve this answer








          edited 1 hour ago









          Jeffrey Kemp

          1155




          1155










          answered 3 hours ago









          Big_Chair

          1,0531723




          1,0531723











          • Excellent, that's exactly the sort of information I was after.
            – Jeffrey Kemp
            2 hours ago






          • 1




            "In our 2016 tests we also included a completely “homemade / fake” seal not issued by a 3rd party, with no meaning whatsoever beyond the icon itself. Note how the homemade seal performed significantly better than the SSL seals issued by established vendors except Norton. This suggests that beyond strong brand reconizability, it doesn’t matter too much which actual seal is chosen. Rather what’s most important is making sure there’s some kind of visual seal or icon present to indicate the robustness of the credit card fields."
            – Jeffrey Kemp
            2 hours ago
















          • Excellent, that's exactly the sort of information I was after.
            – Jeffrey Kemp
            2 hours ago






          • 1




            "In our 2016 tests we also included a completely “homemade / fake” seal not issued by a 3rd party, with no meaning whatsoever beyond the icon itself. Note how the homemade seal performed significantly better than the SSL seals issued by established vendors except Norton. This suggests that beyond strong brand reconizability, it doesn’t matter too much which actual seal is chosen. Rather what’s most important is making sure there’s some kind of visual seal or icon present to indicate the robustness of the credit card fields."
            – Jeffrey Kemp
            2 hours ago















          Excellent, that's exactly the sort of information I was after.
          – Jeffrey Kemp
          2 hours ago




          Excellent, that's exactly the sort of information I was after.
          – Jeffrey Kemp
          2 hours ago




          1




          1




          "In our 2016 tests we also included a completely “homemade / fake” seal not issued by a 3rd party, with no meaning whatsoever beyond the icon itself. Note how the homemade seal performed significantly better than the SSL seals issued by established vendors except Norton. This suggests that beyond strong brand reconizability, it doesn’t matter too much which actual seal is chosen. Rather what’s most important is making sure there’s some kind of visual seal or icon present to indicate the robustness of the credit card fields."
          – Jeffrey Kemp
          2 hours ago




          "In our 2016 tests we also included a completely “homemade / fake” seal not issued by a 3rd party, with no meaning whatsoever beyond the icon itself. Note how the homemade seal performed significantly better than the SSL seals issued by established vendors except Norton. This suggests that beyond strong brand reconizability, it doesn’t matter too much which actual seal is chosen. Rather what’s most important is making sure there’s some kind of visual seal or icon present to indicate the robustness of the credit card fields."
          – Jeffrey Kemp
          2 hours ago










          Jeffrey Kemp is a new contributor. Be nice, and check out our Code of Conduct.









           

          draft saved


          draft discarded


















          Jeffrey Kemp is a new contributor. Be nice, and check out our Code of Conduct.












          Jeffrey Kemp is a new contributor. Be nice, and check out our Code of Conduct.











          Jeffrey Kemp is a new contributor. Be nice, and check out our Code of Conduct.













           


          draft saved


          draft discarded














          StackExchange.ready(
          function ()
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fux.stackexchange.com%2fquestions%2f120993%2fshowing-this-is-secure-on-credit-card-entry-screen%23new-answer', 'question_page');

          );

          Post as a guest
































































          Comments

          Post a Comment

          Popular posts from this blog

          What does second last employer means? [closed]

          Image
          Clash Royale CLAN TAG #URR8PPP .everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty margin-bottom:0; up vote -3 down vote favorite Say, for example I have worked in the following companies, Company A => 2010 - 2011 Company B => 2011 - 2012 Company C => 2012 - Till Date Company D => Have offer Now assume Company D is asking to submit documents from my second last employer. So from the list of companies given, which company would be qualified as second last employer? software-industry employer share | improve this question asked Aug 10 '14 at 5:16 Rajaprabhu Aravindasamy 559 1 6 13 closed as off-topic by Jim G., jmort253 ♦ Aug 11 '14 at 1:58 This question appears to be off-topic. The users who voted to close gave this specific reason: "Questions seeking advice on company-specific regulations, agreements, or policies should be directed to your manager or HR department. Questions that address...
          Read more

          List of Gilmore Girls characters

          Image
          The season three cast—(Back row): Lane, Michel, Paris, Emily, Richard, Sookie, Miss Patty, Kirk; Front row: Jess, Luke, Lorelai, Rory, Dean This is a list of characters for the comedy-drama television series Gilmore Girls . Contents 1 Main characters 1.1 Lorelai Gilmore 1.2 Rory Gilmore 1.3 Sookie St. James 1.4 Lane Kim 1.5 Michel Gerard 1.6 Luke Danes 1.7 Emily Gilmore 1.8 Richard Gilmore 1.9 Paris Geller 1.10 Dean Forester 1.11 Jess Mariano 1.12 Kirk Gleason 1.13 Jason Stiles 1.14 Logan Huntzberger 2 Major recurring characters 2.1 Christopher Hayden 2.2 Jackson Belleville 2.3 Mrs. Kim 2.4 Tristin DuGray 2.5 Max Medina 2.6 Taylor Doose 2.7 Dave Rygalski 2.8 Marty 3 Recurring characters 3.1 Stars Hollow 3.2 Chilton 3.3 Yale 3.4 Other 4 Notable guest stars 5 Unseen characters 6 Notes 7 References Main characters Actor Character Appearances Season 1 Season 2 Season 3 Season 4 Season 5 Season 6 Season 7 A Year in the Life Lauren Graham Lorelai Gilmore...
          Read more

          Confectionery

          Image
          Prepared foods made with a lot of sugar or other cabohydrates "Sweetmeat" redirects here. For the racehorse, see Sweetmeat (horse). Not to be confused with Sweetbread. This Kransekake is a traditional Scandinavian baker's confection. Confectionery is the art of making confections , which are food items that are rich in sugar and carbohydrates. Exact definitions are difficult. [1] In general, though, confectionery is divided into two broad and somewhat overlapping categories, bakers' confections and sugar confections. [2] Bakers' confectionery, also called flour confections , includes principally sweet pastries, cakes, and similar baked goods. Sugar confectionery includes candies ( sweets in British English), candied nuts, chocolates, chewing gum, bubble gum, pastillage, and other confections that are made primarily of sugar. In some cases, chocolate confections (confections made of chocolate) are treated as a separate category, as are sugar-free versions of ...
          Read more