Payment solutions that allow a user to pay for an order in a store using a user device typically only pass the total payment amount to the user device. One way of displaying other order information on a user device involves the user device sending, to the server, a URL containing instructions for building an online page to display the order. However, this introduces the risk that a malicious user may modify the URL to remove an item from the order or change a price of an item without informing the merchant. The present application relates to systems and methods for preventing malicious activity by users when modifying order information. According to some aspects of the present disclosure, items entered into a merchant's point of sale device are sent to a server for storage in order information which can be retrieved by a user device using an identifier.