Online shopping safety 101

Whether someone is a frequent online shopper or a first-time buyer, understanding the basics of online shopping safety can help empower individuals to make informed decisions.

So how do people protect themselves while shopping online? This article will cover the below tips to consider when shopping online:

1. Shop on secure websites
2. Use a secure checkout
3. Don’t share your social security number
4. Don’t click on suspicious links
5. Shop on a secure network
6. Use a passkey or strong password
7. Update software

Shop on secure websites

When it comes to online shopping safety and security for buyers, an important first step is to confirm whether a website is secure. A secure website generally uses encryption to protect user data during online transactions.

This encryption can safeguard sensitive data that is transmitted, such as personal information, payment details, or login credentials, and prevent it from being intercepted or tampered with by unauthorized individuals.

It’s important to note that cybercriminals may be able to mimic signs of encryption — such as "https" in a URL or a padlock icon in the web browser bar — so be sure to do due diligence in checking legitimacy of a website beyond basic signs of encryption. Checking the age of a website can be an indicator of whether it’s legitimate or not, as websites that are fake or have been duplicated often have low ages. Consider looking up third-party reviews, inspecting the site for spelling errors, and comparing prices for items — spelling errors, fake-sounding or low number of reviews, and prices that seem too good to be true can all be potential signs of a fraudulent website.

Use a secure checkout

A secure checkout — which refers to the process of protecting online transactions from unauthorized access — may also help people stay safe while shopping online.

During the final stages of a transaction, a secure checkout transmits sensitive information, such as credit card details, securely using advanced encryption. Secure checkouts typically include a trusted payment gateway and processor with PCI compliance to help protect payment information, validate transactions, and avoid potential fraud.

Some ways to identify a secure checkout include:

• Third-party trust seals or certifications
• Verified payment methods
• PCI DSS compliance
• Transparent contact information for customer support and returns

While these can offer reassurance that a checkout is secure, some scammers may be able to fake some of the above characteristics — such as fabricating third-party trust certification seals— so it’s important to remain diligent.

Don’t share your social security number

Online retailers may experience data breaches, which can expose sensitive data like social security numbers. In online shopping transactions, a social security number is generally not required, so providing it unnecessarily can put someone at risk.

Don’t click on suspicious links

Avoid unknown or suspicious links when shopping online. Clicking on such links can lead to phishing, malware, fraudulent websites, and other scams.

To help spot suspicious links, here are some common best practices:

• Examine the URL for misspellings or unusual characters.
• Be cautious of emails or messages with poor grammar.
• Exercise caution when receiving unsolicited emails, messages, or pop-ups containing links, especially if they make urgent requests or ask for personal information.

Shop on a secure network

Making a purchase on a secure network is another common online shopping safety tip. A secure network refers to a network environment that has implemented various measures to protect user data and communication. Public or unsecured Wi-Fi networks — which don’t require a password or authorization — may pose risks as they can be vulnerable to various cyber attacks.

By utilizing a secure network, online shoppers can typically trust that their data is protected, reducing the likelihood of breaches and unauthorized access.

Use a passkey or strong password

Using a passkey or strong password can help enhance online shopping safety by protecting account information. Here are some potential factors to keep in mind:

• A passkey can add an additional security layer to online shopping accounts and may potentially make the login process easier for a shopper. Passkeys utilize biometric data, such as facial recognition or fingerprint identification, or a secure PIN to authenticate logins.
• If a passkey is not available, strong passwords should be long, complex, unique, and regularly changed. The NIST (National Institute of Standards and Technology) has published guidelines that recommend using 8–64 characters, nonstandard characters when possible, and long passphrases.¹
• Passwords are typically stored in encrypted form, and a strong password may ensure that even if the encrypted data is compromised, it would be difficult for attackers to decipher.
• Passkeys and strong passwords may act as a barrier against unauthorized access and safeguard payment details and other sensitive data.

Update software

Regular updates can provide security patches to help protect against vulnerabilities and potential threats. They may address bugs, improve stability, and ensure compatibility with e-commerce platforms and online payment systems.

Generally, updates also offer the latest defenses against known threats and enhance privacy features, safeguarding personal and financial information. Many devices allow the user to set up automatic updates, ensuring one’s device stays up to date with the latest software. Be sure to set up automatic updates or regularly check devices for available updates.

Make security a priority with PayPal.