top of page

Security&Payments Policy

1. Overview
This policy outlines the security measures implemented by Vape and Smoke to protect the transmission of payment card details during online transactions. We are committed to ensuring the confidentiality, integrity, and availability of sensitive customer information.

2. Compliance Standards
Vape and Smoke adheres to PCI DSS requirements and other relevant regulations to safeguard cardholder data. We regularly review and update our practices to maintain compliance and address emerging threats.

3. Secure Transmission Protocols

  • HTTPS Protocol: All transactions on our website are conducted over a secure HTTPS connection, which encrypts data transmitted between the customer’s browser and our servers.

  • SSL Certificates: We utilize industry-standard SSL certificates to ensure secure connections and validate the identity of our website.

4. Payment Processing

  • Third-Party Payment Processors: We partner with reputable third-party payment processors (e.g., PayPal, Stripe) that comply with PCI DSS. We do not store any payment card information on our servers.

  • Tokenization: Sensitive card information is tokenized during processing, replacing card details with a secure token that cannot be reverse-engineered.

5. Customer Data Protection

  • Access Control: Access to sensitive payment data is restricted to authorized personnel only. All employees are trained in data security protocols and are required to follow strict access controls.

  • Data Encryption: Any sensitive data stored or processed is encrypted to protect it from unauthorized access.

6. Incident Response

  • Breach Notification: In the unlikely event of a data breach, we will notify affected customers promptly and provide information about the nature of the breach and steps taken to mitigate the risk.

  • Continuous Monitoring: We continuously monitor our systems for suspicious activities and conduct regular security audits to identify and rectify vulnerabilities.

7. Customer Awareness

  • User Education: We encourage our customers to use strong passwords, monitor their accounts regularly, and report any suspicious activity immediately.

  • Secure Payments: Customers are reminded to ensure they are on a secure connection (look for HTTPS in the browser) before entering payment information.

8. Policy Review and Updates
This policy will be reviewed annually and updated as necessary to reflect changes in legal requirements, technology, or operational procedures.

​1691 N Eastern Ave, Los Angeles, CA 90063, USA

2204 E Cesar E Chavez Ave, Los Angeles, CA 90033

3110 N Eastern Ave, Los Angeles, CA 90032

Subscribe to Our Newsletter

Contact Us

bottom of page