SSL/early TLS are no longer considered secure forms of encryption for payment card data. By June 2018, all merchants must upgrade to TLS v1.2 or higher and disable any fallback to SSL/TLS 1.0 due to the many vulnerabilities uncovered that make it an unsafe method for protecting sensitive data.
Please click here for more information.
What this means for you
The ClientPay web application is hosted in a PCI compliant environment. All communication between your ClientPay web service and the ClientPay web application must be conducted over https. If your web service is still running on an http connection or your https security protocol is outdated, it is critically important to take steps now to update your settings.
Our goal for upgrading our environments to this enhanced protocol is June 15th 2018. Once this upgrade is complete, if you are using one of our ClientPay practice management integrations but your server does not allow for secure messages via TLS 1.2 or you are using an older computer that does not transmit TLS 1.2 secure messages through your browser, you will experience a disruption in your ClientPay service.