Security Policy

At Macleay Island Variety, we take the security of our website, customer data, and payment processes extremely seriously. Protecting your personal information and ensuring safe transactions is our highest priority. This Security Policy outlines in detail the measures we use to safeguard your information when you visit macleayvariety.com, create an account, or purchase from our store.

1. Website & Data Protection

  1. SSL Encryption

    • All pages of our website are protected by Secure Socket Layer (SSL) technology.

    • This ensures that any information transmitted between your browser and our servers is encrypted and secure.

  2. Firewall & Intrusion Prevention

    • Our servers are protected by enterprise-grade firewalls.

    • Automated systems monitor traffic to prevent malicious attacks such as SQL injections, cross-site scripting (XSS), and brute-force login attempts.

  3. Regular Security Updates

    • We update our systems, plugins, and hosting environment regularly to patch vulnerabilities.

    • Continuous monitoring detects suspicious activity.

2. Payment Security

  1. PCI DSS Compliance

    • All payments are processed through trusted providers that are fully PCI DSS (Payment Card Industry Data Security Standard) compliant.

    • We never store or have direct access to your credit card details.

  2. Secure Payment Gateways

    • Accepted payment methods include Visa, Mastercard, American Express, PayPal, and Google Pay.

    • Each transaction is processed with advanced fraud detection systems.

  3. Fraud Monitoring

    • Our system automatically flags suspicious transactions.

    • We may request identity verification for high-value or unusual orders.

3. Customer Account Security

  1. Password Protection

    • Customers are encouraged to create strong passwords containing letters, numbers, and symbols.

    • Passwords are stored in encrypted format and never visible to our staff.

  2. Two-Step Verification (Optional)

    • We are working towards offering two-step verification for enhanced account security.

  3. Account Activity Monitoring

    • Unusual login activity may trigger a temporary account lock and notification.

4. Staff & Internal Security

  1. Restricted Access

    • Only authorised staff members have access to customer data.

    • Access is given strictly on a need-to-know basis.

  2. Employee Training

    • Our staff are trained on data security best practices and privacy compliance.

  3. Confidentiality Agreements

    • Employees and contractors are bound by confidentiality obligations.

5. Incident Response

  1. Breach Detection

    • In the event of a data breach, we have an incident response plan in place.

    • Customers will be notified in accordance with the Notifiable Data Breaches (NDB) scheme in Australia.

  2. Corrective Measures

    • Immediate steps will be taken to secure systems and prevent recurrence.

  3. Communication

    • We will contact affected customers via email and provide guidance on steps to protect themselves.

6. Customer Responsibility

While we take every precaution to protect your data, customers also play a role in ensuring security:

  • Keep login details confidential.

  • Use strong and unique passwords.

  • Do not share your account credentials.

  • Always log out from shared or public devices.

7. Reporting Security Issues

If you discover any security vulnerability or suspicious activity on our website, please report it immediately.

📧 Email: contact@macleayvariety.com
📍 Address: 1/41 Southsea Terrace, Macleay Island QLD 4184, Australia