PayTorque
PayTorque
  • Home
  • Platforms
    • Hosted Payments Page
    • Embedded Link
    • Interactive Invoices
    • Full AR Management
  • Merchant Facility
  • About
  • Contact
  • More
    • Home
    • Platforms
      • Hosted Payments Page
      • Embedded Link
      • Interactive Invoices
      • Full AR Management
    • Merchant Facility
    • About
    • Contact
  • Home
  • Platforms
  • Merchant Facility
  • About
  • Contact

Data Security Policy

General Definitions

Administrator means the person within the user organisation that is responsible for the running any of the solutions delivered by PayTorque.

Company means PayTorque Pty Limited, PayTorque Limited, (PayTorque), privately held limited liability companies registered in Australia and New Zealand respectively. These companies are part of the OfficeTorque group of companies. For further information about OfficeTorque please refer here. www.officetorque.com 

Customer means You and includes Your employees, consultants, representatives and agents

Data means any data and information entered by you or transferred to the Service via any synchronising software.

GDPR (General Data Protection Regulation) means the new European Data Security Standards effective May 2018. (For further information refer: www.PayTorquePayments.com/gdpr-policy )

Invited Users means users of the Service that You authorise to have access to the Service.

Organisation / Customer  means the entity that contracts to use the Service from PayTorque.

Product / Service / Software means PayTorque or any other products or services provided by PayTorque, directly or indirectly via partners, and the functions and deliverables provided to you via the Websites by way of a service subscription or software license. The terms Service and Software mean the same.

Websites / Platforms means the internet website at the domain www.PayTorque.com or any other site operated by PayTorque.

User / You / Your means You and includes Your employees, consultants, representatives and agents.



Data Security

At PayTorque, we are committed  to providing best practice systems and procedures to maximise the security of our Customers’ data.
We employ a variety of security measures, which, depending on the service or platform you are using, includes, but is not limited to:

  • PCI DSS Payment Gateway compliance (Level 1)
  • SSL TLS (v1.2) secured connection between your System and our Database Servers
  • SSL TLS (v1.2) secured login for any Web Based Management System
  • Login to Web Based Management System is secured using CAPTCHA (proof of human being)
  • Auto lockout after 5 failed login attempts (1 hour)
  • Use of usernames and passwords. 
  • All passwords are stored encrypted
  • Enterprise-grade hosting facilities 
  • Information Security Management System based on the ISO27001-2013 framework
  • Activity and security monitoring
  • Continual monitoring and upgrades against vulnerabilities
  • Regular Penetration Testing
  • Backups and disaster recovery readiness
  • Administrator management role for managing your internal users and access levels


What is PCI-DSS?

PCI-DSS, the Payment Card Industry Data Security Standard, is a set of security requirements relating to the protection of cardholder data. PCI-DSS is governed by the Payment Card Industry (“PCI”) Security Standards Council, an organisation put together by the major card schemes - VISA, MasterCard, American Express, JCB and Discover. 


PCI-DSS is relevant to any entity that stores or transmits sensitive cardholder data, which consists of information such as the PAN (card number), card security code, track data, and PIN block. (Find out more here https://www.pcisecuritystandards.org/. ) 



Data security is a shared responsibility 

Whilst PayTorque and its partners will continue to deliver the latest in protection mechanisms for the data you trust to us, there are elements of the total solution that require your attention as well. These include:

  • Internal security for your Source Customer information (ERP, Accounting Software, CRM)
  • Internal Web browser and email security (e.g.: malware and phishing emails)
  • End Customer access authorisation to the Services 
  • User access authorisation (Adding / removing users and determining their access level)
  • Managing login password security
  • Internal PCI DSS procedures for managing payment authorisations (Find out more here https://www.pcisecuritystandards.org/. ) 
  • Where applicable, compliance with the European GDPR regulations regarding personal data relating to EU and UK entities ((Find out more at www.PayTorquePayments.com/gdpr-policy )



Use of cookies & other technologies

We collect information from your visits to our websites through the use of cookies. Cookies allow us to:

  • Measure website usage & effectiveness
  • Assist you to more easily navigate the website
  • Personalise your website experience though association with your profile information or user preferences


You can turn off cookies in your browser but this may impact on your ability to take full advantage of the website’s features.



Changes to this policy

This policy may be updated from time to time.


We reserve the right to change this policy at any time and any amended policy will be posted on our Website at http://www.paytorquepayments.com/data-security-policy Changes will take effect immediately once they are published on this website. Please check this Data Security Policy regularly for modifications and updates. If you continue to use our products and services, website and associated services, this will indicate your acceptance of any such changes.


Questions regarding this policy are welcomed and should be forwarded by email to customersupport@PayTorque.com


This Policy was last updated 1 July 2020

  • Contact
  • Privacy Policy
  • Data Security Policy
  • GDPR Policy

Copyright © 2020 PayTorque - All Rights Reserved

PayTorque is part of the OfficeTorque Group