1. Security Commitment
Our card payment system is provided by payment gateway partners (“Payment Gateway Partners”) legally licensed to operate in Vietnam. Accordingly, card payment security standards on the https://store.gymo.vn/ website comply with industry security standards.
2. Security Regulations
Our policy for international card and domestic card (internet banking) transactions ensures compliance with the security standards of our Payment Gateway Partners, which include:
- Customer financial information will be protected throughout the transaction process using SSL (Secure Sockets Layer) protocol.
- PCI DSS (Payment Card Industry Data Security Standard) certification provided by Trustwave.
- One-Time Password (OTP) sent via SMS to ensure authenticated account access.
- MD5 128-bit encryption standard.
- Information security principles and regulations in the banking and finance industry as stipulated by the State Bank of Vietnam.
The payment transaction privacy policy on the https://store.gymo.vn/ website applies to Customers as follows: The Company provides a utility to store tokens – only storing strings that have been encrypted by the Payment Gateway Partner and provided to the Company. The Company does not directly store customer card information. The security of customer payment card information is handled by the licensed Payment Gateway Partner.
- For international cards: Customer payment card information that could be used to initiate a transaction is not stored on the https://store.gymo.vn/ system; the Payment Gateway Partner will store and secure it.
- For domestic cards (internet banking): The Company only stores the order code, transaction code, and bank name. The Company commits to strictly implement necessary security measures for all payment activities conducted on the https://store.gymo.vn/ e-commerce platform.