Compliant Privacy & Security Policy

1. Purpose

This policy outlines our commitment to the safe handling, storage, and transmission of payment card information. We are dedicated to maintaining the highest security standards in compliance with the Payment Card Industry Data Security Standard (PCI DSS) and other applicable regulations.

2. Scope

This policy applies to all users of our website, including customers, employees, and partners involved in processing, transmitting, or storing payment card data.

3. Data Collection and Use

We collect only the necessary personal and payment information required to process transactions. Information such as names, billing addresses, and payment card details are collected securely.
By submitting your phone number you consent/Opt-in to receiving SMS messages.

4. Security Measures

Data Encryption: All payment transactions are conducted through an SSL-encrypted connection to protect your payment card data during transmission.
Storage: We do not store full card details. Sensitive information like the full credit card number and CVV are not retained after the transaction.
Access Control: Access to sensitive payment information is restricted to authorized personnel only.

5. Compliance with PCI DSS

Our organization complies with the Payment Card Industry Data Security Standard (PCI DSS) by:

Maintaining a secure network with firewalls and anti-virus protection.
Regularly monitoring and testing networks.
Implementing strong access control measures.

6. Third-Party Services

Our website may use third-party services for payment processing. These providers comply with the PCI DSS requirements and ensure the security of payment data.

7. Breach Notification

In the event of a data breach, we will promptly notify affected individuals and relevant authorities as required by applicable laws and regulations.

8. Updates to the Policy

This policy may be updated periodically to reflect changes in legal requirements or our security practices.