ANTI-FRAUD AND SECURITY POLICY
ANTI-FRAUD AND SECURITY POLICY
Last updated: February 2026
1. Our Commitment to Security
GiraffeVolt OÜ is committed to protecting our customers from fraud and maintaining a secure shopping environment. We employ industry-standard security measures to protect your personal and payment information.
2. Security Measures
2.1 Technical Security
- SSL/TLS encryption for all data transmission
- PCI DSS compliant payment processing
- Secure data storage with encryption at rest
- Regular security audits and vulnerability assessments
- Firewalls and intrusion detection systems
2.2 Payment Security
We do not store your full credit card information on our servers. All payment transactions are processed securely through:
- Stripe (PCI Level 1 certified)
- PayPal (PCI Level 1 certified)
3. Fraud Prevention
To protect against fraudulent transactions, we:
- Monitor orders for suspicious activity
- Verify billing and shipping address matches
- Use fraud detection algorithms and machine learning
- May request additional verification for high-value orders
- Reserve the right to cancel suspicious orders
4. Order Verification
We may contact you to verify your order if:
- Billing and shipping addresses are in different countries
- Order value exceeds €500
- Multiple orders are placed from the same IP address
- Your order triggers our fraud detection systems
We may request additional documentation such as photo ID or proof of address. Orders will be held pending verification.
5. Protecting Your Account
To keep your account secure:
- Use a strong, unique password
- Do not share your password with anyone
- Log out after using shared computers
- Enable two-factor authentication if available
- Monitor your account for unauthorized activity
6. Reporting Suspicious Activity
If you notice any suspicious activity on your account or suspect fraud, please contact us immediately:
Email: security@giraffevolt.shop
We will investigate and take appropriate action within 24 hours.
7. Data Breach Response
In the event of a data breach affecting customer information, we will:
- Notify affected customers within 72 hours
- Report to the Estonian Data Protection Inspectorate
- Provide guidance on protective measures
- Cooperate with law enforcement if necessary
8. Phishing Protection
Be aware of phishing attempts:
- We will never ask for your password via email
- Our emails always come from @giraffevolt.shop domain
- We will never ask for payment outside our website
- Always verify the URL before entering sensitive information
