At Authentic Bhutanese Craft (www.artbhutan.com), we take the security and privacy of our customers seriously. We are committed to protecting your personal information and providing a secure shopping experience. This policy outlines the steps we take to ensure the security of your data while using our eCommerce platform.
1. Data Encryption
All sensitive information, such as credit card details and personal data, is encrypted using industry-standard Secure Socket Layer (SSL) technology. This ensures that any information transmitted between your device and our servers is secure and protected from unauthorized access.
2. Payment Security
We partner with reputable third-party payment processors that comply with the Payment Card Industry Data Security Standards (PCI-DSS). This ensures that all payment transactions are handled securely, and we do not store any credit card information on our servers.
3. Account Protection
To ensure your account security:
Passwords: We encourage the use of strong, unique passwords for customer accounts. Passwords are stored securely using advanced hashing techniques, making them inaccessible to anyone, including our staff.
Two-Factor Authentication (2FA): We offer an optional two-factor authentication feature for added security when accessing your account.
4. Fraud Prevention
We employ a combination of automated and manual review processes to detect and prevent fraudulent activities. This includes monitoring suspicious login attempts, abnormal order patterns, and potential account takeovers.
If we detect any suspicious activity on your account, we may temporarily suspend it and contact you to verify your identity.
5. Data Collection and Storage
We collect only the necessary data required to process your order and improve your shopping experience. Personal data, such as your name, address, email, and payment details, are stored securely on our servers. We follow strict data retention policies to ensure that your information is kept only as long as necessary for business purposes or legal compliance.
6. Third-Party Services
Our website may contain links to third-party services (e.g., payment gateways, shipping providers). These third parties have their own privacy and security policies, which we encourage you to review. [Your Company Name] is not responsible for the practices of these third-party services.
7. Compliance with Data Protection Regulations
We comply with data protection regulations, such as the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). You have the right to:
Access your personal data that we store.
Correct any inaccurate data.
Request deletion of your personal data (subject to legal requirements).
For more details on how we manage and protect your personal data, please refer to our [Privacy Policy].
8. Security Audits and Updates
We conduct regular security audits to identify and address potential vulnerabilities in our system. Our website is regularly updated with the latest security patches to mitigate risks and protect against new threats.
9. Customer Responsibilities
While we take every possible measure to secure your data, you also play a crucial role in maintaining security. We recommend that you:
Keep your login details confidential and never share your account password with anyone.
Log out of your account after each session, especially when using a public or shared computer.
Be cautious of phishing attacks and other scams. [Your Company Name] will never ask for your password or personal details via email.
10. Incident Response
In the event of a data breach or security incident, we will:
Notify affected customers as soon as possible.
Work with cybersecurity experts to contain and resolve the issue.
Cooperate with legal authorities and regulators as required by law.
11. Contact Information
If you have any concerns or questions about our security practices, please contact us at:
Email: craftbhutan@gmail.com
Phone: +975 17657268