EstarOnline

EstarSecure has been facilitating secure online payment transactions for the past decade. We strictly adhere to accepted best practice standards, in terms of “industry security requirements” and in many areas exceed these standards which are referred to as the Payment Card Industry Data Security Standards (PCI DSS).

EstarSecure systems aim to automate the capture and processing of online payments using the latest secure encryption, network and appliance technologies.

EstarSecure provides online payment solutions and services, that ensure the security of merchants', and their clients' data meets the mandatory industry requirements around the protection of data, throughout the payment transaction process.

Payment Card Industry Data Security Standards (PCI DSS)

The PCI DSS (standards and facilities) that we provide our customers can be summarised below.

Provide and Maintain Secure Networks

Provide sophisticated firewalling to protect data
Do not use vendor-supplied defaults for system passwords and other security parameters

Protect Cardholder Data

Protect all stored data
Encrypt transmission of cardholders data sensitive information across public networks

Maintain a Comprehensive Vulnerability Management Program

We use and regularly update anti-virus software
Develop and maintain secure systems and applications

Implement Strong Access Control Measures

Restrict access to data by our merchants on a need-to-know basis
Restrict physical access to cardholder data

Regularly Monitor and Test all our Networks

Track and monitor all access to network resources and cardholder data
Regularly test security systems and processes

Maintain an Information Security Policy

Maintain a policy that addresses information security

EstarSecure payments primary focus is to protect the personal and financial information of any visitors to a website that uses the EstarSecure payment hosting facilities.

Information Collection and Disclosure

EstarSecure will collect information required to securely process transactions, which may include the Cardholder Name, Number and Expiry Date.
Personal information that is also collected for the purposes of communication such as the visitor’s name, email and billing address may also be supplied to the website owner via the EstarOnline Internet Sales and Marketing System application for the purposes of order processing and transaction reporting.
Information collected via the visitor’s connection to the website may be used for statistical purposes to improve the quality of service that we offer. This information may include IP Address, geographic location and browser details.
Information collected via the EstarSecure payment facility may also be disclosed when required by law or authorised body.

Security

Credit Card Numbers provided by visitors through EstarSecure payments are stored securely using a 256-bit AES data encryption method.
All websites using EstarSecure payment facilities employ Secure Socket Layer (SSL) protocols to ensure information provided over the internet is transmitted securely.
All Cardholder information is stored and processed in accordance with the Payment Card Industry Data Security Standard (PCI DSS).

The EstarSecure payment facility is available with any website that EstarOnline hosts and this policy should be read in conjunction with those websites own Privacy Policies with regard to information collected.

EstarOnline may from time to time update this Privacy Policy by posting a new version on this website. You should check this page occasionally to ensure you are familiar with any changes.

This website contains links to other websites. EstarOnline is not responsible for the privacy policies of any third party.