Our Security Policy
This security policy covers Legal City, a web site owned and operated by Legal City CC, a Close Corporation registered in South Africa in 2007 (Registration Number: 2007/182548/23).
Registration Activation
We use a user's email address as our primary means of communication. It is therefore necessary to establish that the email address supplied by a user during the registration process is valid and belongs to the individual in question:
-
The user completes the registration form, ensuring that the email address provided is correct and not blacklisted by our server.
-
The user's profile is created but not activated.
-
An email containing a unique activation ID is sent to the specified email address.
-
The user is required to enter this activation ID in order to complete his or her registration. This process only happens once.
Once the user has gone through the registration process he or she will then be able to log on to access our premier content or make use of the services offered.
Should we ever not be able to communicate with the user via the email address on file, we will automatically suspend the user's account until such time as the user corrects his or her email address.
Encrypted Passwords
In order to ensure that the user's account remains secure, the user's password is encrypted before being stored in our database. We are therefore unable to decrypt a user's password so it becomes necessary to reset a password in the event that the user has forgotten it.
Resetting Passwords
The user's password is set to a random sequence of numbers and letters that are then sent to the user's email address. The user is able to log on to the web site using the "unfriendly" password and, once logged on, is then able to change his or her password to something that they are more likely to remember.
Posting Content to Legal City
A user must first sign in before being able to post content to this web site. This is done in order to maintain the integrity of the content and to ensure that visitors are unable to masquerade as users when posting information to the site. It is generally accepted, therefore, that if a posting appears anywhere on the site under a specific user's name then that user must have submitted the information themselves.
| In order to further assist us in preventing spam and to prevent unsolicited email we also make use of a CAPTCHA image on all form submissions on the web site. A CAPTCHA is a representation of letters and numbers which, theoretically, cannot be processed by a |
|
Sample CAPTCHA image |
| spam robot or batch emailer and requires a person to read the characters from the image and submit them in the form. Click here for more information about CAPTCHA images. |
E-commerce Transactions
This is an e-commerce-enabled web site. It encrypts credit card transactions using a 128-bit digital certificate issued by an authorised certificate provider in the name of our payment processing partner.
Sensitive information such as a user's credit card details are sent over the Internet using SSL (secure socket layer) technology. It can only be decrypted by our payment processing partner. In addition SSL provides a method to verify that the transmission has not been altered en route.
We will attempt to authorise your credit card transaction via our payment processing partner, Safeshop, and our bank, Standard Bank of South Africa. Once we receive verification of sufficient funds, your transaction will be processed. The amount debited to your credit card will be the total for the entire transaction inclusive of VAT. If the transaction is not authorised by the bank you will be notified immediately.
We are a 3D-Secure merchant and subscribe to both Visa's "Verified By Visa" and MasterCard's "SecureCode" porgrammes. if a cardholder is enrolled in one of these programmes, they will be required to enter further password information (such as a PIN code) when making use of our credit card payment facility.
