At OpenShop Foundation, we have taken all the necessary measures to ensure that all information related to your transactions are secure and confidential. The following methods achieve transaction security:
0. User authentication
User authentication is done through login codes. The codes used for user authentication are two: the Username (e-mail) and the Password. Upon successful entry of the codes, the user is recognised as a partner. The user is the only one who knows the Password and has the sole responsibility for keeping it confidential from third parties. The user can change the Username (e-mail) and Password as often as they wish. In case the Password is lost or leaked, the user should immediately create a new Password through the address https://openshop.gr/en/password-recovery.
1. Confidentiality and encryption
We use robust encryption protocols to ensure the confidentiality and integrity of the data being transmitted. Throughout the connection to openshop.gr website, both before and after the user authentication process, all information is encrypted using SSL/TLS encryption protocols. Encryption enables encoding of the information so that it is readable only by its legitimate recipients, who can decode it using the appropriate key. Every time a user signs into the openshop.gr website, all communication between the user's computer and the OpenShop Foundation systems is encrypted using a 256 bits key. Openshop.gr decrypts the information it receives from the user using the shared key and then processes it. After processing it encrypts the results of the processed data and sends it to the user. In the same way, the user's browser decrypts the information it receives from openshop.gr to be able to read.
2. Automatic User sign out
Every 60 minutes, the authenticated user signs out automatically regardless of the user activity. In order to continue the work, the user has to be authenticated again. After re-authentication, the user can continue from the point where it stopped.
3. Preserving confidentiality
All information that the user sends to the OpenShop Foundation is treated as confidential and secret. Only authorised personnel have access to the least possible portion of user information and only to the extent necessary for the proper performance of services. The company does not disclose the details of its partners, their relationships, and their transactions with the company, unless written authorisation from their partners or if required by a court or other public authority decision.