The PCI Security Standards Council has determined that SSL and TLS 1.0 are insecure and has banned their use. Spreedly discontinued support for TLS 1.0 on June 30, 2016. 

Since Bloomerang's transaction forms use Spreedly, these forms also do not support TLS 1.0. If constituents are using Internet Explorer 10 or older, they see an error when they try to donate online. Bloomerang made the necessary updates to standard transaction forms to alert constituents that they need to use a different browser. 

Self-hosted transaction forms need to be updated manually. If these updates are not made, constituents using Internet Explorer 10 or older will not see an error and they will have no indication that the form did not submit.

Note: This change does not affect interaction forms, such as email sign-up forms.

To update self-hosted transaction forms:

  1. Open the form's code on your website.
  2. Find this code:
    if (jQuery('#bloomerangForm[ID]').length) {
  3. Replace those two lines of code with this code:  
    if (jQuery('#bloomerangForm[ID]').length) {
         if (window.ActiveXObject) { // they are using IE < 11, which doesn't support TLS 1.1
              html[ID] = '<p style=\'color: red\'>Your browser does not support the minimum security requirements for keeping your credit card information safe when processing payments. Please upgrade ​your browser or download the latest version of' + 
                   ' <a target=\'_blank\' href=\'\'>Chrome</a> or <a target=\'_blank\' href=\'\'>Firefox</a>.</p>';
  4. Replace [ID] with the form's number, which is contained in the URL when editing the form in Bloomerang.

  5. Save the form.
  6. Test the form.