E-Commerce Legal Policies & Procedures Essay Example | Topics and Well Written Essays - 1000 words

E-Commerce Legal Policies & Procedures - Essay Example The main purpose of setting up policies and standards on Dream Decor’s e commerce website is to help ensure activities carried out within the site are secure. In addition, these regulations seek to assure the general public that the organisation works within set guideline and that all controlled transactions represent Dream Decor’s appropriately. Finally, these policies are set within agreed, and international standards therefore are applicable to the entire staff of Dream Decor, and its affiliated partners including vendors and third party distributers (Awad, 2005). Standards 1. Prior to the commencement of any commercial activity or work on Decors website, the entire commerce initiative must be presented to a review committee. This committee will ensure the compliance of the website to a standard level of security and other related IT and internet use standards (Goldstein 2000). 2. Dream Decor’s information security officer and business directors will be in cha rge of credit card security, the setting up an enforcing of security policies, ensuring the website adheres to national and international standards, and monitoring system access. ... information of clients and all transaction records should be stored for no more than seven years, and upon disposal proper procedures must be followed to ensure integrity is upheld. Records containing personal information must be properly secured, and strict access be maintained at all times. Proper, up to date and regular inventory records must be kept of all transactions and credit card information so as to facilitate quick identification of theft of malpractice. 4. Dream Decor’s staff should regularly undergo or participate in PCI risk assessment and training (Awad, 2005). 5. In the event of a security breach or the discovery of malpractice on the side of Dream Decor and its staff the following steps shall be taken: All affected card information be contained and management to be informed. Affected system is not to be accessed until it has been assessed by a forensic team E-commerce Sample policy and procedure Our commercial site realises the importance of maintain the integ rity of members personal information, and ensuring the privacy that comes along with financial matters. It is our aim to maintain the highest standards, and protect member information by all means possible (Goldstein 2000). Collected information In order to provide our clientele with quality and reliable service, the website automatically collects personal information from members and regular visitors. This information is then used to respond to, and fulfil service demands by the client. For reference purposes, this information is also temporarily stored by our servers. The information collected and stored is vital to our service delivery and system performance as such is of high importance. However, No information that personally identifies individuals or singles out our members is collected.