SSL Certificate

The website  www.beautytheshop.com has an SSL certificate verified by GeoTrust (EV SSL CA – G4).

Your connection to  www.beautytheshop.com is encrypted with 256-bit encryption.

 

What is an SSL Certificate?

An SSL Certificate is a method that allows the information between your web browser and the target web page, in this case www.beautytheshop.com, to travel encrypted across the internet and not be able to be stolen by third parties, above all when using credit cards or personal information. This is the method that allows the best security for transactions available on the internet.

An SSL Certificate provides security to the visitor of its website, a way to tell its customers that the site is authentic, real, and trustworthy for entering personal details. SSL is an acronym (Secure Socket Layer), that is a security protocol that makes its data travel safely and completely, meaning the transmission of the data between a server and a web user, and back again, is totally encoded and encrypted. When referring to data traveling encrypted, we refer to the use of mathematical algorithms and a system of keys that can only be identified between the person browsing and the server. By www.beautytheshop.com having an SSL certificate, our data is encrypted, at this point we can ensure that nobody can read its content. All this leads us to understand that the technology provided by an SSL Certificate is the secure transmission of information via the internet, and thus confirms that the data is free of unwanted persons.

 

Data Security Standards PCI - DSS

The website  www.beautytheshop.com complies with international standards for the storage of payment card data.

The Payment Cards Industry (PCI) Data Security Standards (DSS) were developed to promote and improve the security of cardholder data and to facilitate the adoption of consistent security measures on a global level. The PCI DSS provides a reference for technical demands and processes developed in order to protect cardholder data. The PCI DSS apply to all entities that participate in payment card processes, including merchants, processors, buyers, issuer organizations, and service providers, as well as all other entities that store, process, or transmit cardholders’ data. The PCI DSS comprises a minimum set of requirements in order to protect cardholders’ data and can be improved with the use of additional controls and practices to mitigate other risks. Below you will find a general description of the 12 requirements of the PCI DSS.

 

Requirements:

  • Build and maintain a secure network.
  • Protect cardholder data.
  • Maintain a vulnerability management program.
  • Implement strong access control measures.
  • Regularly monitor and test networks.
  • Maintain an information security policy.