La Cave du Clown uses a secure payment system that complies with SSL standards, the safest and most widely used encryption protocol. Your bank details are directly encrypted and routed to our bank payment organisation, MONETICO, without passing through our site. La Cave du Clown does not store any banking information. We have also chosen the 3-D Secure protocol to guarantee optimal security for your transactions.
What is 3-D Secure authentication?
3-D Secure is a secure Internet payment protocol. Deployed under the trade names "Verified By Visa" and "MasterCard SecureCode", 3-D Secure was developed by Visa and MasterCard to limit the risks of fraud on the Internet, linked to the fraudulent use of payment card numbers. Its purpose is to ensure that the card is used by the genuine cardholder during each online payment.
If both the merchant and the cardholder's bank are equipped, an additional step takes place at the time of payment. In addition to the card number, the expiry date of the card and the three-digit security code (printed on the back of the card), the Internet user may have to enter a password, date of birth or a dynamic one-time code.
Depending on the bank issuing the card, authentication methods vary.
Some examples of French banks (the protocol has been applicable in France since 1 October 2008):
Crédit Mutuel and CIC: the customer must either enter one of the codes on his or her "personal key card" (a grid of 64 four-digit codes from which the right code must be selected according to the line and column requested by the website) and a code received by e-mail at the address linked to his or her bank account, or enter a code received by SMS on the telephone number associated with his or her bank account, or directly via the application installed on his or her smartphone, which sends an alert when validation is required;
Barclays, ING Direct, HSBC and Axa Banque: a one-time code is sent by SMS
Caisse d'épargne: a code is sent by SMS. If the customer does not want to use this system they can use a box where they insert their card into a box that looks like a calculator and enter their PIN code and a one-time code appears.
BNP Paribas: the customer must enter their date of birth; since July 2009 a code is sent by SMS. The customer can opt for a Digipass hardware authenticator;
Société Générale Group (including Boursorama, Crédit du Nord): A code is sent by SMS. In addition, with the specific smartphone application, they can validate the transaction by logging in with their application;
Crédit Agricole Group (including LCL): since 2010, a code is sent by SMS, otherwise the customer must indicate a personal password created at the time of the first use;
BRED Banque populaire: an Ipab authentication key, a cryptographic key in USB format; Regional Banques Populaires and subsidiaries (Crédit Coopératif, Crédit Maritime): the customer inserts his or her card into a box (previously set up by the customer) that looks like a calculator and enters his or her PIN code. A single-use code appears. If the customer does not want to use this system, they can receive a call via voice server or an SMS on their mobile.
Groupama Banque: the customer must enter their name, postal code and date of birth;
La Banque Postale: a code is sent by SMS only. The Postal Bank calls this system "Certicode"; Compte-Nickel (Financière des Paiements Electroniques): a single-use code is sent by SMS to the customer at the time of purchase.
3-D Secure can also be active on payment/credit cards (debiting cash or credit to a traditional current account):
PASS cards (from Carrefour Group): the customer must enter his or her first and last name and date of birth and receives a code by SMS on his or her mobile phone (number to be indicated the first time). ONEY cards (subsidiary of Auchan Holding): the customer receives a code by SMS on their mobile phone. Banque Casino cards: the customer receives a code by SMS on their mobile phone