Privacy & Security Policy

Overview

At Crochead, we prioritise the privacy and security of our customers. This document outlines both our Privacy Policy and Security Policy, detailing how we protect user data, ensure website security, and provide a safe online experience for our international customers.

Privacy Policy

Our current Privacy Policy can be found at the following link: Crochead Privacy Policy. This policy explains how we collect, use, and protect personal information. Key points include:

  1. Data Collection: Information is collected only as needed to provide our services and improve user experience.
  2. Data Usage: Personal data is used strictly for order fulfillment, account management, and communication.
  3. Third-Party Sharing: We do not sell or share personal data with third parties without explicit consent.
  4. Access and Control: Customers can access, update, or delete their personal information by contacting us.
  5. Compliance: We adhere to global privacy regulations, including GDPR, where applicable.

Security Policy

Data Protection

  1. Encryption: All data transmitted between users and our servers is encrypted using industry-standard SSL/TLS protocols.
  2. Data Storage: User data is securely stored on encrypted servers that comply with global data protection standards.
  3. Access Control: Access to sensitive data is restricted to authorised personnel only, and all access is logged and monitored.
  4. Data Minimisation: We collect only the data necessary for providing our services and fulfilling legal obligations.

Website Security

  1. Regular Updates: Our website platform and plugins are regularly updated to patch security vulnerabilities.
  2. Firewall Protection: We use web application firewalls (WAF) to detect and block malicious traffic.
  3. Monitoring: Continuous monitoring is implemented to identify and mitigate potential security threats.
  4. Two-Factor Authentication (2FA): Admin access to the website is secured with 2FA to prevent unauthorised access.

Customer Protection

  1. Secure Payment Processing: All transactions are processed through PCI DSS-compliant payment gateways.
  2. Fraud Prevention: We utilise advanced fraud detection systems to safeguard against fraudulent activities.

Incident Response

  1. Incident Management: In the event of a security breach, we have a comprehensive incident response plan to mitigate impacts and notify affected customers promptly.
  2. Notification: If a data breach occurs, affected users will be informed within 72 hours as required by applicable laws.

Contact Information

If you have any questions about our Privacy or Security Policies, or need to report a security issue, please contact us at:

Email: trading -@- crochead.com.au
Phone: +61 401 532 237