Online shopping still scares many consumers. They worry that entering their credit card details on the Web will make them vulnerable to theft and fraud. Because the Internet is still relatively new compared to other types of credit card use, some people worry that it’s less secure. Do you?

In fact, using your credit card online can be more secure than placing a telephone order, especially with a live operator (who could hypothetically write down a copy of your credit card information when you present it to them). By following a few simple rules, and taking some precautions, you can protect yourself from credit card fraud online.

Don’t let companies keep your credit card information on file.

Many online companies and financial institutions will let you choose whether or not to store your login credentials, credit card number, or other personal information. Many people choose to store those details, so when they visit that site again later, they don’t have to re-enter it all. That’s a mistake.

By refusing to allow companies to store your information, you not only protect it from a potential hacker in their database, but you protect it from any unauthorised users with access to your computer (such as co-workers, children, or guests). Otherwise that information wouldn’t be stored and accessible only to you, but to anyone visiting that website through your computer in the future.

Verify that the order site is secure.

When you visit an online retailer to make a purchase, you should look for two signs that their site is secure. On the order page itself, where you’re asked for your personal information, look at the bottom of your browser window. You should see a lock icon on a secure site (which side it’s on will vary with the browser you use).

Also look at the address bar at the top of your browser window (it should include the URL or Web address of the page you are currently viewing). When you login to an e-commerce site to access your account and make a purchase, you should then be in a “secure session.” When this happens, the address bar won’t start with “http” as usual. Instead, it should become “https.” The added “s” at the end signifies that the page has been verified as secure, and data you send from that page to the company will be encrypted to protect it from thieves.

Be cautious clicking on email links.

You may put your credit card information at risk by falling victim to a phishing attempt. That is basically when someone sends you a link that looks like it goes to a secure and trusted site, but in fact it goes somewhere else made to look like that site.

For example, you may receive an email that looks like it came from your credit card’s issuing bank, and the email may include a link taking you to an account sign-on page. You click the link, and the page looks similar to what you’re used to seeing, so you enter your login credentials (which lead to all of your credit card details). Only then will you find out that you didn’t actually login to your bank’s site, but a site made to look like it to collect your login information.

That’s how phishing attempts work–they trick you into giving your information, and then they have access to your credit cards. In some cases they’ll take you to an order page where you enter credit card details directly. The easiest solution is to not click on links immediately in emails (the “from” address is often spoofed and looks legitimate). Instead, put your mouse pointer over it without clicking. Most browsers and email programs will have a status bar at the bottom that will display the link’s full URL or Web address before you click. Make sure the link is truly going to take you to your bank’s website. If in doubt, visit the site manually to login.

All it takes is a bit of common sense and a little technical awareness to cut your risk of online credit card fraud significantly.