Andromeda Jewelry Company
PRIVACY POLICY
AS OF 3/14/05, WE ARE NO LONGER ACCEPTING CREDIT CARD ORDERS DIRECTLY THROUGH OUR WEBSITE. If ordering with a credit card, you must use PayPal.com for secure credit card ordering. This can be done by using the shopping cart feature for items you are wishing to order. The information below will be kept posted, as it applies to all credit card transactions previously honored.
For Credit Card Transactions:
Effective June 1, 2001, VISA requires all merchants who accept credit card information via any "card-not-present" transaction (such as an on-line order form, e-mail, or telephone) must post their consumer data privacy policy.
All entities participating in VISA (this includes MasterCard, American Express, and Discover) payment system must comply with the Cardholder Information Security Program (CSIP). CISP protects any data required to process VISA transactions such as card number, expiration date, PIN, etc. CISP also protects any information obtained during the transaction process that identifies the individual consumers and their purchases such as name, purchase description amount, and other details. We currently use PayPal's secure sight to process credit cards.
Andromeda Jewelry Company complies with CISP requirements:
- Install and maintain a working firewall (restricting outside connections) to protect data accessible via the Internet. Andromeda Jewelry Company collects personal information through PayPal payment services.
- Keep security patches up-to-date (follow vendor recommendations). Andromeda Jewelry Company utilizes constantly monitored live updates as recommended by vendors.
- Encrypt stored data. Andromeda Jewelry Company does not have access to or does not electronically store customer payment information.
- Encrypt transmission of cardholder information sent across networks. PayPal is secure.
- Use and regularly update anti-virus software. Andromeda Jewelry Company has installed Symantec Norton AntiVirus. Live updates are constantly monitored and performed each week.
- Restrict access to data. Andromeda Jewelry Company does not have access to or store customer payment information.
- Assign unique ID's. Andromeda Jewelry Company is solely owned and operated by Jennifer Griffith.
- Do not use vendor supplied default passwords. Andromeda Jewelry Company immediately changes all vendor passwords to private and unique passwords known only by Jennifer Griffith.
- Track access to data by unique ID's. Andromeda Jewelry Company is solely owned and operated by Jennifer Griffith.
Policies and Information (cont.)
