|
|
Java-E UK - Security
Security and data integrity are paramount for internet retailing, and at Java-E UK we take them extremely seriously.
Below are summary points which form part of our policy regarding security and data integrity:
1. We never know your credit/debit card details
We never have access to any of your card details; we simply get confirmation from a secure card-clearing company (WorldPay) that your payment has been successful (or failed).
2. Card payments are very secure
WorldPay is the credit/debit card clearing facility suggested by National Westminster Bank UK Plc (NatWest), as well as a vast number of other highly reputable organisations, and they are also part of the Royal Bank of Scotland Group.
3. We don't rely only on computers - we use people, too !
We do not rely solely on our database/systems when processing orders; every single order is manually checked for mis-matches or possible errors or fraud. If there's any doubt at any stage as to the authenticity of an order, we will put the order on hold until we have investigated further. We also manually check WorldPay's list of successful payments against the orders that we have on our own database to ensure that our database is correct.
4. We also use paper !
We keep hard-copies of every aspect of every order, so that if our database becomes corrupted then we can continue to process our orders with no delay to our customers.
5. Your contact details are safe with us
We consider our database to simply be a way of helping our customers to search our products and process their orders, and we never use the information for anything else. (i.e. We never send out junk email or junk postal mail, and we only contact our customers for matters which directly relate to orders that they have placed and questions/problems that they have raised with us.) The amount of personal information that we have about our customers is kept to the absolute minimum needed to process their orders (i.e. contact/billing/shipping details and order history only). We never give or sell any information about our customers to anybody else. The only exception to this is if we are required to provide customer details by law for legal/tax reasons. (for example, to prove to a law/police agency that none of our customers have the same name/address as a suspected/convicted terrorist). HOWEVER, if we personally judge an authority's information request to be unreasonable and/or essentially illegal in itself, then we will refuse the request even at the risk of being prosecuted; we will do everything we can to protect our customer's personal details against suspected "witch-hunting" or "McCarthyism" as we believe such practices to be illegal, immoral, and counter-freedom. Some authorities sometimes stray towards these practices under the guise of a genuine threat - we keep a close eye on such requests and if the authority concerned does not have a concrete reason/evidence for requesting such information then we will refuse to submit to the request even at the risk of prosecution, as such a request is illegal regarding International Human Rights laws which will always override any individual state's/country's local laws. For example, an unreasonable request would be if an authority asked us to give them the full names/addresses of anyone on our database who has a first name of "Mohammed" - such a request would be illegal and oppressive and we would refuse it - International Law states that people are innocent until proven guilty, and a request for a matching first name is not sufficient to gain a valid warrant for an information request.
6. Your login details are secure
Every customer has a unique UserID, as well as a unique email address, and their own password. Customers' UserIDs and Passwords are routinely checked by the Java-E UK team to ensure that they are not too obvious. If a UserID/Password is considered too obvious (i.e. other people could guess them easily), the Java-E UK team will change them to more secure values and then email the customer their new login details. This helps to ensure that people don't choose UserIDs/Passwords like [AAA/AAA] which other people could easily guess and login as.
7. You have free access to all your details
The UK Data Protection Act makes it mandatory for us to tell our customers upon their request about all information that we hold on them. Usually companies charge a small fee to their customers when they request such information. However, at Java-E UK, we are strenuous supporters of all aspects of the various Data Protection laws across the world, which is why every single piece of personal information that we hold about a customer is directly available to them (and to them only) to view at any time on their own profile page and order-tracking.
|