-
Next to your desire for Better Trips!
Transaction Security
-
SSL Certificate
Nowadays, we are always thinking of safety issues when it comes to online transactions.
Airshop.gr respects the safety of your personal information and for that reason our website is certified by GeoTrust Inc. based on the certification standards of RapidSSL.
Therefore, when you book a ticket or a hotel all of your personal information is automatically encoded in a 256-bit SSL code, providing you the highest possible security. This means, that we can ensure you that the connection of your computer with ours is private, confidential and protected.
Our website's security is also confirmed by the lock icon that exists on the left or on the right side of the address bar. By double clicking on the icon you can get more information about the website's security certificate. Moreover, the letter s after the http (https) on the address bar of your browser is a sign of your safety.
Every economic transaction and card charging is made at our travel agency MINIMA TRAVEL (licence number GNTO: 0933E60000072800), which has its base in Thessaloniki (3 N. Kountouriotou str, 1st floor) and issues every legal voucher.
-
PCI-DSS Compliance
We respect you and your confidence in us. We ensure your transactions in the best possible way.
For this reason airshop.gr complies with the safety standards of the official certification of PCI-DSS (Payment Card Industry Data Security Standards).The Payment Card Industry Data Security Standard (PCI DSS) is a proprietary information security standard for organizations that handle branded credit cards from the major card schemes including Visa, MasterCard, American Express, Discover, and JCB. The PCI Standard is mandated by the card brands and administered by the Payment Card Industry Security Standards Council. The standard was created to increase controls around cardholder data to reduce credit card fraud. Validation of compliance is performed annually, either by an external Qualified Security Assessor (QSA) that creates a Report on Compliance (ROC) for organizations handling large volumes of transactions, or by Self-Assessment Questionnaire (SAQ) for companies handling smaller volumes.
The PCI Data Security Standard specifies twelve requirements for compliance, organized into six logically related groups called "control objectives".
- Build and maintain a secure network
- Install and maintain a firewall configuration to protect cardholder data
- Do not use vendor-supplied defaults for system passwords and other security parameters
- Protect cardholder data
- Encrypt transmission of cardholder data across open, public networks
- Maintain a vulnerability management program
- Use and regularly update anti-virus software on all systems commonly affected by malware
- Develop and maintain secure systems and applications
- Implement strong access control measures
- Restrict access to cardholder data by business need-to-know
- Assign a unique ID to each person with computer access
- Restrict physical access to cardholder data
- Regularly monitor and test networks
- Track and monitor all access to network resources and cardholder data
- Regularly test security systems and processes
- Maintain an information security policy
- Maintain a policy that addresses information security
- Build and maintain a secure network