At Laterna we take the security of our e-commerce website and of payment transactions extremely seriously.
We encrypt all traffic to and from our website with Transport Layer Security (TLS) communication secured with Secure Sockets Layer (SSL) certificate with SHA-256 signature algorithm with RSA encryption.
We use the industry-leading company Stripe (https://stripe.com/en-bg/about) to safely and securely process your payment transaction.
For all card payments we enforce and use the Strong Customer Authentication (SCA) requirements as per the second Revised Payments Services Directive (PSD2) applicable to transactions in the European Economic Area (EEA). In brief, you will be asked by your bank to confirm the transaction with a token, SMS code or other additional factor.
Our website is hosted on industry-standard web hosting infrastructure of the highest grade.
We do not store any card details at all and we have technical access only to the card type name, the last four digits of the card number, and the card expiration date. This information is not subject to PCI compliance and is of no relevance to any potential fraud or misuse.
We undergo regular PCI compliance assessment by reviewing and validating our PCI compliance annually.