How you can stay secure
Phishing and social engineering
Phishing (pronounced ‘fishing’) is the name given to the illegal practice of sending emails that appear to come from a genuine company but are actually sent by a fraudster in an attempt to trick you into disclosing information about yourself. These emails usually ask you to update or verify your customer account information by clicking on a link that takes you to a bogus website where you are asked to enter for example your account number and password or other sensitive information. This information is then used for fraudulent purposes.
Social engineering is the practice of phoning or emailing you using details about yourself gained from sources including social media accounts to encourage you to give more information such as usernames and passwords.
Malware is an abbreviation for “malicious software” and is a term used to describe hostile, intrusive or annoying software that is installed on your computer without your consent and often without you realising it.
It is good practice to change your password regularly. Don’t use the same password for anything else, and don’t share it with anybody.
What should I do if I get an email that looks as it should but appears suspicious or asks me for personal information?
We will never ask for your personal or financial details by e-mail. You should not respond to something claiming to be from us and asking for such details.
If I think someone has obtained my information, what should I do?
If you are contacted by someone asking for further personal details, financial details, banking details or credit card details (or asking you to verify such details) you should not respond. Always follow the good practice described here, or visit www.getsafeonline.org.uk.
Where can I go to get advice?
www.getsafeonline.org.uk is a government –funded website which is packed with practical advice on what to look out for and the steps you should take to protect yourself.
Keeping your credit/debit card details safe
I use my credit card / debit card to pay for my purchases. Should I be concerned?
You can be assured that we have robust systems in place to prevent unauthorised access. Because we comply with the Payment Card Industry’s guidelines, you are also protected no matter which method you use to place your order.
Security steps we take
As a responsible retailer we use encryption where appropriate and we employ techniques including hashing and salting to prevent people from seeing values such as your email address when you are on our website.
We provide all staff with regular required training on data protection and cyber security and test their comprehension of the training before they are allowed to continue accessing personal data.
We restrict data access to those of our staff who need to see it to do their jobs.