NEoWave Security & Privacy

This section explains how NEoWave protects you and uses your information in a safe, secure and responsible manner.

Your protection is our priority
We strive to safeguard your data by:

To keep your data safe we use:
Advanced authentication technology Website design that blocks or limits online display of customer information when not necessary to the transaction. Monitoring our websites through recognized online privacy and security companies like Starfield Secure Certificate Authority that offers REAL 256-bit SSL encryption. Starfield assures online visitors that credit card account numbers and other confidential information cannot be viewed, intercepted or altered.

How we use your information
Information collected by NEoWave will be used for reference to orders placed as well as future correspondence from NEoWave.com. Your information will not be sold or distributed to outside parties.

How Do I Know If Security is Operating?
Your internet session is encrypted if your security-enabled browser is connected to a website using the Secure Hypertext Transport Protocol. URL strings beginning with "HTTPS://" instead of the usual "HTTP://" indicate that the secure protocol is in effect. Your browser may also tell you if security is operating. Most browsers can be set to give you a pop-up announcement when you enter or leave a secure web page.

Payment Card Industry Data Security Compliance
NEoWave is tested with industry-standard PCI Compliance remote vulnerability testing.

The Payment Card Industry (PCI) Data Security Standard is a worldwide standard for payment card and consumer financial data protection. It incorporates the requirements of the Visa USA Cardholder Information Security Program (CISP) and the Visa International Account Information Security (AIS) program, the MasterCard International Site Data Protection (SDP) program, as well as the security requirements of American Express DSS, DiscoverCard DISC, and the Japan Credit Bureau (JCB). VISA and Mastercard now require all merchants to adhere to the PCI security standard. Our compliance with PCI standards is certified by a certified PCI compliance services provider.

In order to maintain PCI Compliance certification, all publicly accessible internet devices and any associated domain(s) hosted on them must have been audited within the past 3 months, and all vulnerabilities categorized as Urgent, Critical, or High severity (Level 3 or greater) must have been corrected within 72 hours of their discovery.