Secure payment

Our secure payment



Forms of payment

COSTA CANARIA S.A requests through its website the details of a credit card, AND reservation holder, to effect the payment of the desired products. 

We offer 100% secure payment

The website uses industry-accepted information security techniques, such as firewalls, access control procedures and cryptographic mechanisms, all in order to prevent unauthorized access to data and possible theft of data.  To achieve these purposes, the user/customer agrees that the provider may obtain data for the purpose of the corresponding authentication of the access controls. 

In our online store we guarantee that every transaction made is 100% secure.  All the purchases you make on our website are backed by the secure server of the bank La Caixa, so that your data is protected and encrypted by the most advanced technology, which is why it is much safer to send your data to the Secure Server of the banks than to pay at a gas station, restaurant, etc.

What happens when I send my data over the network?

When you make the purchase and choose the method of payment, at the moment of clicking on the “Pay by card” button the website connects to the Secure Server, from that moment you enter to browse in the secure area and enter your bank details in the Secure Server of the bank, which makes sure that the operation meets the required security requirements and carries out the operation, after which it appears the confirmation of the same and the buyer returns back to the store.

Could anyone know the encryption key?

Each time a user connects to a Secure Server, it generates a random key for the session that is being set up with the user, while the client’s browser generates another random key that serves to identify himself to the server.

If at the time a secure connection has been established, other users connect to the server, other new keys are generated to identify the participants in the connection.  The Secure Server ensures that the generated keys never match while several simultaneous connections are established.

How do I know that a secure connection has actually been established?

You can tell if you have connected to a Secure Server if the URL starts with “https://.”  In addition, the most commonly used browsers indicate this graphically by means of an icon that shows the user whether or not there is a secure connection (e.g. in the case of Internet Explorer, the yellow lock appears).

What security protocol is used in transmissions?

Connections to the Secure Server use the latest specifications of the standard security protocol on the network: SSL.

Which financial institution guarantees the security of my transactions?

When you make a purchase with a debit or credit card in our Online Store, a connection is established with the Secure Server of La Caixa, bringing all its experience and technological infrastructure to provide secure and effective support for all the electronic purchases made in our online store.  When a payment request arrives at the Secure Server of La Caixa, it is responsible for managing the authorization or refusal, in real time, of the payment for that purchase after confirming that all the information is correct to make the payment.

How do we protect your credit card payment?

Our online store uses a server based on one of the most reliable secure payment systems on the Internet: the SSL (Secure Socked Layer) security protocol.   (For more information, visit  All your personal data and the information you transmit to us travels encrypted over the network, and is protected and encrypted before being sent for processing.

For payment with Visa and Mastercard only CES (Secure Electronic Commerce) transactions will be accepted.  After verifying that the card is attached to the CES system, the system will contact the bank that issued it to obtain the buyer’s authorization for the purchase.  Once the bank confirms the authenticity, the card will be charged.  Otherwise the order will be cancelled.

The payment gateway we use for your credit card payment is from La Caixa Bank that encrypts your data using the 256-bit SSL protocol.  Our system does not store any bank details of your credit card, but goes directly to the TPV Ecommerce (POS Terminal) of the Bank.

What is SSL?

Recent advances in browser and server technology have made it easier to use web services without e-fraud concerns.  An example of this is Secure Sockets Layer (SSL), developed by Netscape, a security protocol sent to the Internet Engineering Task Force (IETF) as an Internet draft.  Basically, the protocol allows the browser and the server of a web session to authenticate each other and protect the information that will subsequently flow between the two points.  Using cryptographic techniques such as encryption and digital signature, the protocol:

  • It allows browsers and web servers to authenticate each other.
  • Allows website owners to control access to particular servers, directories, files or services
  • It allows sharing confidential information (such as credit card numbers) between the browser and the server, keeping it inaccessible to third parties.
  • It ensures that the data exchanged by the browser and the server cannot be corrupted, either accidentally or deliberately, without being detected.