Last Updated: 11-05-2026

DailyDoll Shop (“Platform”, “we”, “us”, or “our”) is committed to maintaining a high level of payment security and protecting the confidentiality, integrity, and security of customer information processed through our Services.

This Policy explains the security technologies, payment safeguards, encryption standards, and protective measures used when processing transactions and handling payment-related information on the Platform.

Nothing in this Policy limits any mandatory consumer, banking, privacy, cybersecurity, or payment rights provided under applicable laws and regulations, including those of the European Union, United States, United Kingdom, Canada, Australia, and other jurisdictions.

1. SSL/TLS Encryption and Secure Transmission

1.1 Secure Data Transmission

All confidential information exchanged between users and the Platform, including:

  • personal information;
  • account credentials;
  • payment-related information;
  • checkout data;
  • authentication requests;
  • order information;

is transmitted using industry-standard SSL/TLS encryption technologies.

1.2 Encryption Standards

DailyDoll Shop uses modern TLS protocols and commercially reasonable encryption standards appropriate to the current state of technology and industry practice.

Where supported by the user’s browser and device, connections generally use TLS 1.2 or higher with strong encryption algorithms.

These security measures are intended to support compliance with:

  • GDPR and UK GDPR security requirements;
  • PCI DSS security standards;
  • PSD2 and Strong Customer Authentication (SCA) requirements where applicable;
  • industry requirements imposed by payment processors and card networks.

1.3 Hosting Infrastructure

Our services may be hosted using infrastructure located within the European Union and/or other jurisdictions where our service providers operate.

Hosting providers and infrastructure partners are selected based on commercially reasonable security, reliability, compliance, and operational standards.

1.4 Purpose of Encryption

SSL/TLS encryption is intended to help protect data exchanged between users and the Platform against:

  • unauthorised interception;
  • manipulation during transmission;
  • unauthorised access;
  • certain replay and network-based attacks.

However, no internet transmission or electronic storage method can be guaranteed to be completely secure.

2. Confidentiality and Data Protection

2.1 Confidentiality Commitment

We take commercially reasonable measures to protect confidential information submitted through the Platform.

Personal and payment-related information will only be disclosed:

  • to authorised service providers and payment processors;
  • where necessary to provide the Services;
  • to comply with applicable laws, regulations, lawful requests, or court orders;
  • for fraud-prevention, security, dispute resolution, or compliance purposes.

2.2 Compliance With Applicable Regulations

DailyDoll Shop aims to operate in accordance with applicable data protection, payment, and cybersecurity requirements, including where applicable:

  • GDPR (EU Regulation 2016/679);
  • UK GDPR;
  • ePrivacy rules;
  • PSD2 (Payment Services Directive 2);
  • Strong Customer Authentication (SCA) requirements;
  • PCI DSS obligations applicable to our payment processing environment.

Payment card information is processed primarily by third-party certified payment providers. DailyDoll Shop does not intentionally store full payment card numbers or card security codes (CVV/CVC) on its servers.

3. Payment Providers and Payment Security

DailyDoll Shop supports payment processing through third-party payment providers and payment networks that may include:

  • Stripe;
  • PayPal;
  • Visa;
  • Mastercard;
  • American Express;
  • China UnionPay;
  • Apple Pay;
  • Google Pay;
  • other locally available payment methods depending on region and availability.

Payment methods available to a user may vary depending on:

  • country or region;
  • currency;
  • device or browser;
  • payment processor availability;
  • regulatory restrictions;
  • risk and compliance checks.

All payment transactions are processed through encrypted connections and may include additional security measures such as:

  • tokenisation;
  • 3D Secure authentication;
  • Strong Customer Authentication (SCA);
  • risk scoring;
  • fraud monitoring;
  • verification procedures required by payment providers.

3.1 Card Payments

Card payments processed through our payment partners may use:

  • advanced encryption technologies;
  • tokenisation of payment credentials;
  • real-time fraud-prevention systems;
  • 3D Secure 2 or similar authentication methods where required.

These measures are intended to help reduce risks associated with:

  • payment fraud;
  • unauthorised transactions;
  • identity theft;
  • payment credential compromise.

3.2 Apple Pay

Where available, Apple Pay allows users to make payments using payment credentials stored on Apple devices.

Apple Pay may use:

  • device-based tokenisation;
  • Face ID;
  • Touch ID;
  • device passcodes;
  • other Apple security mechanisms.

DailyDoll Shop does not receive or store complete payment card details submitted through Apple Pay.

3.3 Google Pay

Where available, Google Pay allows users to make payments using credentials stored in their Google account or supported devices.

Google Pay may use encrypted payment tokens and additional account security measures provided by Google and participating payment processors.

3.4 PayPal

DailyDoll Shop accepts PayPal payments where supported by the user’s region and PayPal availability.

PayPal may provide:

  • encrypted transactions;
  • fraud-prevention tools;
  • buyer and seller protections where applicable;
  • dispute management systems;
  • authentication and compliance measures.

DailyDoll Shop does not receive or store PayPal passwords or login credentials.

4. Supported Payment Methods

The Platform may support various global and regional payment methods through Stripe, PayPal, or other authorised providers.

These may include:

4.1 Card Networks

  • Visa
  • Mastercard
  • American Express
  • China UnionPay

4.2 Digital Wallets

  • Apple Pay
  • Google Pay
  • other supported wallet providers depending on region and processor availability.

4.3 Local and Alternative Payment Methods

Depending on jurisdiction and processor support, the Platform may support local payment methods, bank-based payments, instalment payments, or buy-now-pay-later solutions.

Availability may change without notice and may depend on legal, banking, regulatory, or processor limitations.

5. Security Monitoring and Fraud Prevention

DailyDoll Shop maintains commercially reasonable security and fraud-prevention measures, which may include:

  • automated fraud detection;
  • risk scoring;
  • transaction monitoring;
  • account takeover protection;
  • IP and device monitoring;
  • security alerts;
  • rate limiting and abuse prevention;
  • limited storage of payment-related metadata;
  • internal security reviews and compliance procedures.

We reserve the right to delay, reject, review, cancel, or limit transactions where suspicious activity, fraud risk, sanctions concerns, abuse, or legal compliance issues are detected.

6. User Responsibilities

Users are responsible for maintaining the confidentiality and security of their account credentials and payment methods.

Users should:

  • use strong passwords;
  • avoid sharing account credentials;
  • access the Platform only from secure networks and devices;
  • immediately report suspected unauthorised activity.

If you suspect unauthorised activity, please contact:

Email: [email protected]

You should also contact your payment provider, bank, card issuer, or PayPal account provider where appropriate.

7. Buyer Protection and Disputes

Depending on the payment method used and the user’s jurisdiction, buyers may benefit from:

  • card issuer protections;
  • chargeback rights;
  • PayPal Buyer Protection where applicable;
  • dispute-resolution procedures;
  • fraud alerts and monitoring systems.

Additional protections and procedures may also be described in:

  • Return Policy;
  • Delivery Policy;
  • Terms of Use;
  • Dispute Resolution procedures.

8. Limitation of Liability

While DailyDoll Shop uses commercially reasonable technical and organisational safeguards, no internet-based system, payment environment, software platform, or electronic storage solution can be guaranteed to be fully secure or free from interruption.

To the maximum extent permitted by applicable law, DailyDoll Shop disclaims liability for:

  • unauthorised access caused by user negligence;
  • failures of third-party payment providers;
  • internet or telecommunications disruptions;
  • events beyond our reasonable control;
  • fraudulent actions by third parties despite reasonable safeguards.

Nothing in this Policy limits liability that cannot legally be excluded under applicable law.

9. Updates to This Policy

DailyDoll Shop may update this Payment Security and SSL/TLS Protection Policy from time to time to reflect:

  • changes in applicable law or regulation;
  • security technology updates;
  • changes to payment providers or processors;
  • operational or platform changes.

Updated versions will include a revised “Last Updated” date and become effective upon publication unless otherwise stated.

Continued use of the Platform after publication of the updated version constitutes acceptance of the updated Policy, to the extent permitted by law.

Main Menu