The lock icon at the bottom of your screen indicates when you are in a secure section of the Grapevine website. The Grapevine website uses a 128-bit GeoTrust Digital Certificate (further information about this feature can be found at http://www.geotrust.com/au). The epayplus site is operated by ActewAGL Retail ('ActewAGL') as an agent for Grapevine and uses a 128-bit Verisign Digital Certificate (further information about this feature can be found at http://www.verisign.com).
These Certificates ensure the confidentiality of your information, and are also used to help confirm that the server you are passing information to is the correct server. If any other Internet user intercepts the communication they will only be able to see it in an encrypted form.
When you connect to a secure web server, such as the epayplus website, you ask that server to authenticate itself. This authentication is a complex process involving public keys, private keys and a digital certificate. The certificate tells you that an independent third party has agreed that the server belongs to the company it claims to belong to.
The site uses secure socket layer (SSL) encryption for forms and payment details transmitted using the Internet. SSL encrypts web communication, allowing us to take credit card orders and protect sensitive personal information. SSL security makes eavesdropping on secure web traffic almost impossible.
The security of your personal and payment information is paramount. All reasonable steps are taken by Grapevine to protect your personal information, in particular credit card details. Grapevine uses GeoTrust Digital Certificate Services (128-bit encryption) to ensure your details are encrypted and stored securely. Not all (internet) browsers support 128-bit encryption and it is your responsibility to ascertain whether 128-bit encryption is supported by your browser.
Grapevine do not recommend the use of older browsers for secure transactions.
A session is only valid for a certain period of time after your last activity with the server. If no activity is detected in the set time frame (for example 20 minutes), then your session is logged off and the 'session cookie' (login token) is no longer valid. Once your session expires, you will have to log on again to authenticate yourself for another session.
All reasonable steps are taken by Grapevine to protect a customer's personal information, in particular credit card details supplied by registered epayplus users. Grapevine uses state-of-the-art encryption technology to secure the personal information of a website user.
All credit card transactions receive an identification number that is proof of the transaction's acceptance into the banking system. This identification number can be used to trace any transaction back to the credit card issuer (for example; the bank that issued the MasterCard, Bankcard, or VISA credit card). The result of the credit card payment is normally displayed on the screen within a few seconds.
Credit card information collected from customers who are not registered epayplus users, via the ad hoc online payment system, is transmitted immediately into the banking system and is deleted immediately after the transaction has been completed. See also: Encryption above.