Security of the credit card operations are ensured by using a unique password, and choosing the required algorithm for the credit card number encryption.
If you fail to provide the path to the encryption password file, the system warns you by showing the corresponding banner (in red). The best way to keep this file safe is to store it outside of the site root directory, but make it available for reading by the PHP interpreter at the same time. For example: d:/projects/siteman/bitrix/modules/sale/install/data.php. In this file, you have to define a special variable $pwdString whose value would be the credit card number encryption password.
Important! A strong password must contain letters and digits and have over 20 symbols.
The system comes with the sample password file (the password is initially empty). This file can be found in /bitrix/modules/sale/install/data.php.
$pwdString = "";// Provide password here (at least
// 20 letters and digits is recommended)