PROHIBITED ACTIVITIES LIST

  • Adult goods and services which includes pornography and other sexually suggestive materials (including literature, imagery and other media); escort or prostitution services ; Website access and/or website memberships of pornography or illegal sites.
  • Alcohol which includes alcohol or alcoholic beverages such as beer, liquor, wine, or champagne.
  • Body parts which includes organs or other body parts.
  • Bulk marketing tools which includes email lists, software, or other products enabling unsolicited email messages (spam).
  • Cable descramblers and black boxes which includes devices intended to obtain cable and satellite signals for free.
  • Child pornography which includes pornographic materials involving minors.
  • Copyright unlocking devices which includes Mod chips or other devices designed to circumvent copyright protection.
  • Copyrighted media which includes unauthorized copies of books, music, movies, and other licensed or protected materials.
  • Copyrighted software which includes unauthorized copies of software, video games and other licensed or protected materials, including OEM or bundled software.
  • Counterfeit and unauthorized goods which includes replicas or imitations of designer goods; items without a celebrity endorsement that would normally require such an association; fake autographs, counterfeit stamps, and other potentially unauthorized goods.
  • Drugs and drug paraphernalia which includes illegal drugs and drug accessories, including herbal drugs like salvia and magic mushrooms.
  • Drug test circumvention aids which includes drug cleansing shakes, urine test additives, and related items.
  • Endangered species which includes plants, animals or other organisms (including product derivatives) in danger of extinction.
  • Gaming/gambling which includes lottery tickets, sports bets, memberships/ enrolment in online gambling sites, and related content.
  • Government IDs or documents which includes fake IDs, passports, diplomas, and noble titles.
  • Hacking and cracking materials which includes manuals, how-to guides, information, or equipment enabling illegal access to software, servers, websites, or other protected property.
  • Illegal goods which includes materials, products, or information promoting illegal goods or enabling illegal acts.
  • Miracle cures which includes unsubstantiated cures, remedies or other items marketed as quick health fixes.
  • Offensive goods which includes literature, products or other materials that (i) defame or slander any person or groups of people based on race, ethnicity, national origin, religion, sex, or other factors; (ii) encourage or incite violent acts; or (iii) promote intolerance or hatred.
  • Offensive goods, crime which includes crime scene photos or items, such as personal belongings, associated with criminals.
  • Prescription drugs or herbal drugs or any kind of online pharmacies which includes drugs or other products requiring a prescription by a licensed medical practitioner.
  • Pyrotechnic devices, combustibles, corrosives and hazardous materials which includes explosives, fireworks and related goods; toxic, flammable, and radioactive materials and substances.
  • Regulated goods which includes air bags; batteries containing mercury; Freon or similar substances/refrigerants; chemical/industrial solvents; government uniforms; car titles; license plates; police badges and law enforcement equipment; lock- picking devices;  pesticides; postage meters; recalled items; slot machines; surveillance equipment; goods regulated by government or other agency specifications.
  • Securities which includes stocks, bonds, or related financial products.
  • Tobacco and cigarettes which includes cigarettes, cigars, chewing tobacco, and related products.
  • Traffic devices which includes radar detectors/jammers, license plate covers, traffic signal changers, and related products.
  • Weapons which includes firearms, ammunition, knives, brass knuckles, gun parts, and other armaments.
  • Wholesale currency which includes discounted currencies or currency exchanges.
  • Live animals or hides/skins/teeth, nails and other parts etc. of animals.
  • Multi-level marketing collection fees.
  • Matrix sites or sites using a matrix scheme approach.
  • Work-at-home approach and/or work-at-home information.
  • Drop-shipped merchandise.
  • Any product or service which is not in compliance with all applicable laws and regulations whether federal, state, local or international, including the laws of India.
  • Services that have the potential of casting EBS and/or Payment Method Providers in a poor light and/or that may be prone to ?Buy & Deny? attitude of the cardholders when billed (e.g. adult material/mature content/escort services/friend finders) and thus leading to chargeback and fraud losses.
  • Businesses or websites that operate within the scope of laws which are not absolutely clear or are ambiguous in nature (e.g. Web-based telephony, Websites supplying medicines or controlled substances, websites that promise online match-making). 
  • Businesses out rightly banned by law (e.g. betting & gambling/ publications or content that is likely to be interpreted by the authorities as leading to moral turpitude or decadence or incite caste/communal tensions, lotteries/sweepstakes & games of chance).
  • Dealing in intangible goods/services (e.g. software download/health/beauty products), and businesses involved in pyramid marketing schemes or get-rich-quick schemes.
  • Web-based telephony/SMS/text/facsimile services or calling cards; bandwidth or data transfer/ allied services; voice process/knowledge process services.

SECURITY STANDARDS AND SECURITY REQUIREMENTS

  • Account information security as per applicable laws and guidelines and applicable Payment Card Industry Data Security Standards are the minimum security related requirements to be adopted by the Merchant for protecting Customer?s related information.

  • Provide multiple security measures to protect Customer databases, so that a failure of any one security control will not result in unauthorized disclosure of account and transaction information.

  • Implement controls, such as protecting the domain name server with firewalls and router security functions, so that Customer Internet sessions cannot be re-directed to an unauthorized Website.  If a Customer is redirected to an unauthorized Website, the Customer may unknowingly disclose confidential information, such as USERID/password and account number to a criminal.

  • All communication between the Customer and the Merchant that includes Customer identification, authentication, account, or transaction information must be secured in tune with cryptographic standards.

  • Databases containing Customer information are only accessible through tested Web interfaces designed for Customers. Static passwords do not provide adequate security for system, database, or application administrative access over the Internet to Customer databases.

  • Web application software must never allow the Customer to enter unrestricted system or database commands and it must never fail in a fashion that allows entering of unrestricted system or database commands.

  • Customer support functions only originate from approved networks and computers.

  • Develop network access controls that prevent the system that hosts the Customer database from being directly addressed from the Internet.

  • Do not open or run e-mail attachments or other unknown files on the Web or database servers from unknown sources; do not use the Web or database servers as browsers to view other Websites.

  • Secure the account number by:

    • Using current cryptography standards (preferably hardware which secures the     cryptographic keys), if the account number must be decrypted on a computer system that can be addressed from the Internet.

    • Use cryptographic hardware or software meeting current standards, if the account number can only be decrypted on devices not accessible from the Internet.

    • Not storing the account and transaction information on a computer accessible from the Internet.

  • Changes to security controls, hardware that implements security controls, and software that implement security controls for account and transaction information must be tested prior to implementation on a computer system that does not contain account and transaction information accessible from the Internet.

  • After changes to security controls, hardware that implements security controls, and software that implements security controls for account and transaction information are implemented, testing must be completed to ensure that the appropriate security controls remain in effect.

  • The Merchant shall not sell, purchase, provide or exchange a Customer?s name or MasterCard / Visa account number information in any form obtained by reason of a MasterCard/ Visa Card transaction to any third party other than its MasterCard/ Visa acquiring member-EBS, or pursuant to a government /statutory or competent body?s request. Further, the materials containing card account information must be made unreadable and unusable before they are discarded in an approved manner.