Or have you come to this page in a frame from another site? Click here to break free
· Concerns About Security, Cookies & Using Credit Cards On The Web ·
CREDIT CARD TRANSACTIONS ARE MANUALLY PROCESSED AT OUR OFFICES;
YOU MUST BE
CONFIDENT THAT YOUR INFORMATION GETS TO US, ONLY TO US,
AND YOU CAN HAVE THAT CONFIDENCE.
BACKGROUND: We would like to make your purchases as easy and convenient as possible, but we share your concerns of providing credit card information over the Web. We ultimately leave this choice up to you, and if you are not comfortable with encrypted forms transfer, we provide the convenient option of faxing or phoning us your orders. Using the methodology we have developed, we do believe you can be comfortable sending us your order and credit card information directly from our web site; our research has shown us that no instances of credit card fraud have been discoverd for transactions using this methodology! Please read on to see how we are doing it:
We have developed a completely secure method for transferring this data in a manner that cannot be eavesdropped, using SSL (secure socket layer) technology, with site authentication verified in your browser (solid key lower left in Netscape; padlock lower right in Internet Explorer). We use a Verisign digital ID with Secure Server Certificate Authority issued under the RSA Data Security root. Each browser has a different method for viewing and verifying the certificate data, which can be accessed while you are on any of our secure pages (you will see that our certificate is held in the corporate name of IMC Online; IMC is our corporate partner in our web services division).
A NOTE ABOUT "COOKIES": There is much information available about "cookies"; the knowledge base at netscape.com has explanatory articles available on this very misunderstood topic. Cookies can't be used to search your hard drive, but can be used for "remembering" information you have supplied to a site while on line (after having filled out a form, etc.). Some internet companies might use this data for selling mailing lists or other purposes of which you were not aware or desirous.
ABOUT SECURE SOCKET LAYER: The SSL protocol encrypts the data transfer, allowing client/server applications to communicate in a way that cannot be eavesdropped. Secure Socket Layer is a technology originally developed by Netscape that negotiates and employs the essential functions of mutual authentication, data encryption, and data integrity for secure transactions.
Encryption is the process of protecting data from being read by unauthorized users by transforming the plain text data into an unintelligible form (ciphertext).The protected data must be deciphered using an inverse decryption process before it can be read. An encryption key is the code used to encrypt or decrypt the data.
Is the encrypted transfer safe from eavesdroppers? Yes. Both the client (your browser) and our secure server provide part of the random data used to generate the keys for each individual connection. Additionally, each record is protected with a MAC (message integrity check) that contains a sequence number for the message. In the end, each secure transfer has an encryption scheme that is randomly generated during that session, it is unique to that particular transaction, and the information is then deciphered off-line.
THE BOTTOM LINE: It is the general consensus in the credit card security industry that transactions via data transfer employing SSL is more secure than walking into a store and handing someone your credit card (where they can record the information, keep a copy of the imprint & signature, etc. But if you are still concerned, please feel free to either:
We pride ourselves
in the trust we establish with our customers,
FOR MORE INFORMATION: There is much documentation available about SSL secure data transfers; one of the best sources is Netscape's web site, where you can do a search for writings on the subject.
© yachtSOFT.com LLC, 1998-2000.