Payment Information Privacy Policy

1. Commitment to Security

The card payment system is provided by payment gateway partners ("Payment Gateway Partners") that are legally licensed to operate in Vietnam. Accordingly, the card payment security standards on the Deliciae website ensure compliance with industry security standards.

2. Security Regulations

• The policy for transactions using international and domestic cards (internet banking) ensures compliance with the security standards of the Payment Gateway Partners, including:
  • Customer financial information is protected throughout the transaction process using SSL (Secure Sockets Layer) protocol.
  • PCI DSS (Payment Card Industry Data Security Standard) certification provided by Trustwave.
  • One-time password (OTP) sent via SMS to ensure authenticated account access.
  • MD5 128-bit encryption standard.
  • Information security principles and regulations in the financial and banking industry as prescribed by the State Bank of Vietnam.

• Transaction security policy for payments on Deliciaede.vn applies to customers:
  • The company provides a token storage utility—only storing encrypted strings provided by the Payment Gateway Partners. The company does not directly store customers' card information. Payment card information security is ensured by licensed Payment Gateway Partners.
  • For international cards: Payment card information that can be used to initiate transactions is not stored on the Deliciaede.vn system. Payment Gateway Partners will store and secure this information.
  • For domestic cards (internet banking): The company only stores the order ID, transaction ID, and bank name. The company is committed to strictly implementing the necessary security measures for all payment activities conducted on the Deliciae e-commerce platform.