By | Published on August 4th, 2017

It’s time to talk online security: consumer details and payments

We know we’ve been banging on about online security a lot lately, but without sounding like your Gran, it IS very important that you protect your details and your money when surfing that interweb thingy. We’ve all heard stories of stolen identities and online credit card fraud so it’s not surprising many consumers are wary of giving out their details online.

Never fear though dears, if you’re a ResDiary customer, we have a number of ways to ensure that your guests are getting the clearest, safest experience when they book a table with you.

online security

Secure microsite

Our online booking portal is covered by an HTTPS (hypertext transfer protocol secure) certificate. This means that any details the customer inputs via our site are secure. HTTPS has become more widespread in the last few years as awareness of cyber security increases. What HTTPS does is stops your data being intercepted by unwanted third parties. If consumers enter in card details, email addresses or other personal information on, these details are safe.

ResDiary v Design My Night

Secure widgets

If guests make a booking on your website, using ResDiary widgets, these are also covered by an HTTPS security certificate. A few months ago, widgets could be embedded on your site, even if it was not HTTPS activated. Although these details were secure as the widget itself was hosted on HTTPS, it is now impossible to embed our widgets on sites without this online security. This gives your customers a double layer of protection for data and online payments – like a good pair of long-johns in the winter months.

online security payments

Secure landing pages

With ResDiary, you have the option of taking customer card details over the phone. Once they are in the system, they are completely PCI compliant and are stored by our payment provider Stripe. (Who sit on the board of PCI compliance, the wee whippersnappers!) However, some guests are wary of doing this, so we introduced our secure landing page. This allows you to send diners an email with an HTTPS-covered link that allows them to send you their details for tokenization or taking payment. As all this is done via the ResDiary system, you don’t even need to lift a finger after set up.


Wait a minute? This is all very fair and well but my website itself is insecure. What do I do?
Never fear friend, we’re looking after you. Take a look at this blog to see why you should switch to HTTPS and how to do so.


My website has a widget embedded on it but it’s not HTTPS certificated?
Right now, you don’t have a widget. Although we sent out a few warnings, it’s easy for stuff to get missed. So if you’ve not changed over to an HTTPS site and you’re using a ResDiary widget, we automatically changed it to a booking button. This means your customers are sent through to your ResDiary microsite to make their booking in a secure manner. Once you upgrade to HTTPS, it will automatically go back to a widget.


I feel like I’m being wrapped up in cotton wool with all this online security stuff. Is it really necessary?
Yep. The internet is an amazing place, but then again, you never know who’s trying to look at information they shouldn’t be. In order to make sure you’re complying with data protection and online security regulation, it really is necessary.