PayPal Merchants: Less Than 30 Days to Upgrade to TLS 1.2
If merchants do not make the necessary updates by the June 30th deadline, they will no longer be able to accept PayPal payments until the upgrades are complete.
Why is PayPal requiring merchants to upgrade to TLS 1.2?
PayPal is committed to providing the highest level of security to protect our customers online and we work closely with our merchant community to help them do the same. In the past, merchants and partners typically used HTTPS to securely connect with PayPal’s servers. At PayPal, we use the TLS protocol to encrypt these communications, because it has been determined by the PCI Council and global security experts to be the best way to protect customer data online.
In order to protect our shared customers from security and fraud-related issues, we’re requiring all merchants who process payments with PayPal to update to TLS 1.2 by June 30, 2018.
What do merchants need to do?
Merchants should verify whether their environment supports TLS 1.2 and, if necessary, make appropriate updates.
And we’re here to help! More information about the required changes, the impact of the changes, and how to implement them can be found on our
Merchant Security Microsite. For merchants who need further assistance with the upgrades, visit our
PayPal Partner Directory for businesses that can help with these types of systems questions.
At PayPal, we’re committed to providing a secure and convenient way to manage and move money online or on a mobile device. On behalf of the millions of people who use PayPal every day, we’d like to thank all of our merchants and partners for their continued support in maintaining the highest security standards for our shared global customers.
John Nai, Chief Information Security Officer, PayPal