Security Policy

Last Updated: June 18, 2020

This Policy is intended to provide our security policy, and our use and payment processing for orders purchased by our customers. By using our Website, you consent to the collection, use, and disclosure of Personal Information in accordance with this Policy. This Policy is incorporated by reference into the Jarasim Terms of Use and subject to the provisions of the Terms of Use. Disclosure of payment at jarasim.com (as defined below) by Jarasim or LASMNS, LLC, an Illinois limited liability corporation (“Jarasim,” “Jarasim.com” “we,” or “us”) from users of our websites at jarasim.com (the “Websites”), as well as all related multi-vendor products, and other services provided by us and on which a link to this Policy is displayed (collectively, together with the Websites, our “Services”).

“Personal Information,” as used in this Policy, is any information relating to an identified or identifiable individual.

TABLE OF CONTENTS

  1. What customer information does Jarasim.com retain?
  2. How does Jarasim.com collect customer information and take payment at checkout?
  3. Does my Jarasim site retain customers’ credit card information?
  4. Offsite Hosted Payment Gateways.
  5. Website Security and Compliances.
  6. Security and Data Retention
  7. How can you contact us about this policy?

What customer information does Jarasim.com retain?

Jarasim retains:

  • What products a customer ordered and when
  • Name, e-mail address, and phone number provided by the customer
  • Billing (and optionally: shipping) address entered by the customer
  • A note about payment method used by the customer

How does Jarasim.com collect customer information and take payment at checkout?

Jarasim.com site allows customers to pay for orders via one of the payment gateways.

Jarasim.com payment processing securely requests information from customers and relays it to a third-party payment processing service, e.g., Intuit credit card processor or PayPal.

Does my Jarasim site retain customers’ credit card information?

No. Your credit card number and security code are never stored on our website. The payment gateway gives this sensitive information directly to the payment processor. We design our payment processing to ensure credit card data never enters or passes through Jarasim.com database.

Our integrated payment gateways give you the option to “Store” Credit Card, PayPal or eChecks on Jarasim.com via a secure method called tokenization. Tokenized payment methods can be used for recurring payment, pre-orders, or for convenience in future purchases by the logged-in customer.

Offsite Hosted Payment Gateways

In terms of user experience, an offsite payment gateway means the customer is sent from our checkout page to the payment processor’s site (e.g., PayPal.com), along with an encoded version of the customer’s basic order information. Depending on the gateway, this information could be just the total cost of the order and an order number; with more secure hosted gateways it can include an itemized breakdown of the order’s products, shipping, and tax.

Once the payment is complete, the payment processor then sends the customer back to jarasim along with confirmation that the payment was made. This payment flow means minimal security concerns for you and jarasim, since the whole payment portion takes place on the payment processor’s site and servers.

Website Security and Compliances

Jarasim incorporates latest technologies such as SSL Certificates, WAF (Web Application Firewalls), and Anti-Malware, Anti-Viruses, and adhere to PCI and DSS compliances, and cybersecurity best practices to stop phishing attacks, and other things to protect your privacy, data, and transactions thus making our customers online purchases much safer.  

Security and Data Retention

We use reasonable security measures that are designed to protect Personal Information from accidental loss, disclosure, misuse, and destruction. We also maintain procedural safeguards to further restrict access to your Personal Information to employees who need it to perform their tasks (or people working on our behalf and under confidentiality agreements). Please be aware, however, that no data security measures can be guaranteed to be completely effective. Consequently, we cannot ensure or warrant the security of any information that you provide to us. You transmit information to us at your own risk.

We take measures to delete your Personal Information or keep it in a form that does not permit identifying you when this information is no longer necessary for the purposes for which we process it, unless we are required by law to keep this information for a longer period. When determining the retention period, we take into account various criteria, such as the type of products and services requested by or provided to you, the nature and length of our relationship with you, possible re-enrollment with our products or services, the impact on the services we provide to you if we delete some information from or about you, mandatory retention periods provided by law and the statute of limitations.

HOW CAN YOU CONTACT US ABOUT THIS POLICY?

If you have questions or comments about this policy, you may email us at info@jarasim.com or by post to:

Jarasim/LASMNS, LLC

2447 W Lunt Avenue 2nd Floor

Chicago, IL 60645

United States