The Charisma Jewelry STORE recognizes the importance of the issue of the security of Personal Data, as well as electronic transactions and has taken all the necessary measures, with the most modern and advanced methods, to ensure the maximum possible security. All information related to users' personal information is kept confidential. www.charisma.boutique (hereinafter referred to as "Site ") uses the TLS protocol, with 128-bit encryption , for secure online commercial transactions. All card payments are processed through Alpha Bank 's Alpha e-Commerce online payment platform and use TLS 1.2 encryption with 128- encryption protocol bit (Secure Sockets Layer - SSL). Encryption is a way of encrypting information until it reaches its intended recipient, who will be able to decrypt it using the appropriate key. This encrypts all of the User's personal information, including the Credit Card number, name and address of the User, so that it cannot be decrypted or changed while on the Internet.
TLS (Transport Sockets Layer) is the successor to the widespread SSL and today is the global standard on the Internet to ensure the correct encrypted communication between websites (web sites) and network users, for the secure transfer of encrypted data between encrypted data users and web servers. An encrypted TLS / SSL communication requires that all information sent between a User and a server be encrypted by the sending software and decrypted by the receiving software in conjunction with a globally recognized certificate authority, thus protecting the privacy of individuals. information during their transfer. In addition, all information sent with the TLS / SSL protocols is protected by a mechanism that automatically detects whether the data has changed during the transfer. , a template aimed at organizations that manage sensitive information such as credit card information, AT data. etc.
Control Objectives
PCI DSS Standard Requirements
Secure Network
- Firewall application to protect user data
- Configuring and applying rolling passwords
User Protection
- Protection of stored customer data
- Encryption of data transmission of sensitive data as well as transactions when communicating through open public networks (internet)
Maintaining Vulnerability Process
- Strict use and Regular updating of antivirus systems on all vulnerable systems.
- Development and management of secure systems
Strong Access Control Measures
- Restriction of access to customer information only to competent executives
- Granting of specific rights and IDs to competent executives
- Restricting access to the User's sensitive billing data, at a physical level
Regular Network Check
- Control and track all network-level accesses
- Regular process & system security checks
Maintaining a Data Security Policy
Create & Maintain a unified data security policy in both processes and systems
User Identification
The information used to identify the User is twofold: the Password and the Personal Security Password . Each time the User enters his data, he is given access to his personal account. This process is achieved safely both due to the encryption of data during their transfer to the Internet, as well as the encryption of data on the servers of the STORE. According to the same standards, the User is given the opportunity to change the Personal Security Code (Password) as often as he wishes. After entering the desired code, the code is encrypted and stored in the systems of the STORE for the success of maximum security. For this reason, the only person who knows the User Password is himself / herself and is solely responsible for maintaining the confidentiality of these passwords by third parties . The STORE is not able to know the secret User / User password, except to reset it. In case of loss or leakage of this code, the User must immediately notify the STORE, otherwise the latter is not responsible for the use of the secret code by an unauthorized person. The online store charisma.boutique of the STORE in no way discloses or publishes the personal data and information of the Users. Personal data is used exclusively for the good execution of transactions. All information is encrypted and stored with absolute security .
Privacy Policy
When the User visits the Site or when the User makes purchases, it is necessary to provide certain information (name, occupation, email address, home address, landline, mobile phone, etc.) related to Personal Data , which will be processed automatically and will be integrated in automated files, which have previously been notified to the competent Authority and for which the STORE is Processor in accordance with Law 2472/1997 . The User guarantees and bears the responsibility for the truth, accuracy, validity, authenticity, relevance and appropriateness of the Personal Data that he discloses to the STORE.
The STORE has developed legal protection measures in its facilities, systems and archives and guarantees the confidentiality of Personal Data, however it may disclose to the competent Public Authorities Personal Data or any other information it holds or is accessible through its systems, if this is also reserved by an applicable law provision. In addition, the STORE reserves the right to inform its suppliers with statistical sales statements, which in no case will contain personal information that may lead to the identification of individuals.
User Consent : The User consents and accepts the forthcoming processing of his personal data for the purposes of smooth and easy transaction between the parties and thus provides his explicit consent to the collection and processing of Personal Data, such as described above. The STORE may also transfer Personal Data to companies or individuals established in Greece or other European Union countries in order for the latter to provide the STORE with any services in connection with the above purposes, including without restriction direct marketing or advertising services. The User provides his explicit consent to the transmission or disclosure of the data contained in the files to the above mentioned recipients. In any case, the STORE guarantees the confidentiality and security of Personal Data during the process of their transfer and transfer that may take place.
Right of access / objection : At any time the User has the right to access the file, correct, delete and display objections at any time regarding the processing of data concerning him. Moreover, the User's consent can be revoked at any time. For this reason he can send a letter to the address of the STORE (Agiou Meletiou 2, Athens - Kypseli, 11361, Attiki) or send an e-mail to the following address: info @ charisma.boutique Use of Personal Data for promotions : The STORE provides the opportunity to users and those who make purchases through the Site to choose their information about the new products available on the market and for any other offers, payment arrangements, etc. by sending advertising - informational messages to their email or postal address or by telephone. The STORE will not abuse the above service. Users are always given the option to stop receiving advertising messages. In addition, the STORE may use the User's navigation history on its Site for promotions to sites other than its Site.