·We guarantee that every transaction made at LOPESAN HOTEL GROUP is 100% secure. All the transactions
that involve sending personal or banking data are carried out using a secure environment. LOPESAN HOTEL GROUP
uses a server based on SSL (Secure Socked Layer) standard security technology. All the information
that you send to us is encrypted through the network. (To learn more, please visit our Secure Payment section.)
·Likewise, your credit card details are not stored in any database but are sent directly to the Bank's POS (Point of Sale) terminal.
·We also inform you that to provide enhanced security to credit card owners, we have incorporated
the secure payment system called SEC (Secure Electronic Commerce) in our payment gateway. To that
end, if you are a holder of a "secured" card, you can always make payments by VISA or MASTERCARD in our store.
·Should your card does not use this payment system, LOPESAN HOTEL GROUP will only accept payment by VISA or MASTERCARD from customers with a proven track record and reliability.
·In both circumstances, the following information will always be requested when paying by VISA
or MASTERCARD: the card number, the expiry date, and a card security code, which is the last 3
digits of the number printed in italics on the back of your VISA or MASTERCARD, thus offering additional safeguard regarding transaction security.
Important: Credit card fraud is a crime, and LOPESAN HOTEL GROUP will take legal action against anyone who makes a fraudulent translation on our online store.
FAQ – Online secure payment
We offer 100% secure payment
At Lopesan Hotel Management we guarantee that every transaction is 100% secure. All the purchases you make on our website are secured by the bank's secure server, using the most advanced technology to protect and encrypt your data, making it much safer to send your data to the banks' secure server than paying at a petrol station, restaurant, etc.
What happens when I send my data through the network?
When you finalise the purchase and choose the payment method, the website connects to the Secure Server when you click on the Payment by Card button. This will direct you to the secure area where you can register your bank details on the Secure Server, ensuring that the transaction meets the security requirements, after which confirmation appears and the buyer is taken back to the store.
Is it possible for someone to crack the encryption key?
Every time a user connects to a Secure Server, the server generates a random key for the session it establishes with the user, while the customer’s browser generates another, equally random, key which it uses to be identified by the server.
If other users connect to the server at the same time a secure connection is established, new keys are generated to identify the users in the connection. The Secure Server ensures that the keys generated never match while several simultaneous connections are established.
How do I know that a secure connection has been established?
You can tell if you have connected to a Secure Server if the URL begins with "https://". In addition, the most widely used browsers also use an icon to graphically show the user whether the connection is secure or not (for example, the yellow closed padlock that appears in Internet Explorer).
What security protocol is used for transmissions?
The latest specifications of network’s standard security protocol are used for connections to the Secure Server: SSL.
When you use a debit or credit card to make a purchase on our website, a connection is established with the bank's Secure Server, which harnesses all its expertise and technological infrastructure to securely and efficiently support all electronic purchase transactions made at www.lopesan.com. When a payment request arrives to the Secure Server, the server manages authorisation or denial of the payment in real time after checking that all the data to make the payment are correct.
3D Secure is the most secure credit card payment system because it can authenticate the cardholder, ensuring that the customer who is using a card number is the cardholder. This is done by using a secret code that your own bank will provide and that only you will know. In most cases this code can be requested online. For more information, please consult your bank's website or contact them directly.
Very important: Our website only accepts payment with credit cards that are secured (3D Secure), so to make purchases online you will need a special code provided by the bank or entity that issued the card, citing the need for a virtual 3D Secure code. We recommend that you use this 3D Secure system, as it ensures that you are the only one who can make purchases with the card, preventing fraudulent online use of your card and guaranteeing complete transaction security.
How do we protect your credit card payment?
lopesan.com uses a server based on one of the most reliable online secure payment systems: The Secure Socked Layer (SSL) protocol. (For more information, please visit
All your personal data and the information you submit to us is encrypted as it travels through the network and is protected and encrypted before being sent for processing.
Only SEC (Secure E-Commerce) transactions will be accepted for Visa and Mastercard payments. After verifying that the card uses the SEC system, the system will contact the issuing bank so that the buyer can authorise the purchase. Once the bank confirms the authenticity, the charge will be made on the card, otherwise the order will be cancelled.
The payment gateway we use for your credit card payment encrypts your data using the 256-bit SSL protocol. Our system does not store any of your credit card’s bank details but redirects to the bank’s Virtual POS (Point of Sale Terminal).
What is SSL?
The latest advancements in browser and server technology have made it easy to use web services without having to worry about cyber fraud. An example is Secure Sockets Layer (SSL), developed by Netscape, a security protocol submitted to the Internet Engineering Task Force (IETF) as an internet draft. Essentially, the protocol allows the browser and the server of a web session to authenticate each other and protect the information that will subsequently flow between both points. Using cryptographic techniques such as encryption and digital signature, the protocol:
·allows browsers and web servers to authenticate each other
·allows website owners to control access to specific servers, directories, files and services
·allows confidential information (such as credit card numbers) to be shared between the browser and the server, making it inaccessible to third parties
·ensures that the data exchanged between the browser and the server cannot be corrupted, either accidentally or deliberately, without being detected.