← Back to Home

Security

Your safety and security are our top priority

🔒 SSL/TLS Encrypted 🛡️ VGCCC Regulated ✅ Licensed AU 🔐 PCI DSS Compliant

1. Data Encryption

All communications between your browser and our servers are protected using SSL/TLS (Secure Sockets Layer/Transport Layer Security) encryption with 256-bit encryption strength. This ensures that your personal information, financial data, and account credentials are encrypted during transmission and cannot be intercepted by third parties.

You can verify our SSL certificate by looking for the padlock icon in your browser's address bar and confirming the URL begins with "https://".

2. Data Protection

We implement multiple layers of security to protect your data:

  • Encryption at Rest: All sensitive data stored on our servers is encrypted using industry-standard AES-256 encryption
  • Access Controls: Strict role-based access controls ensure only authorised personnel can access customer data
  • Network Security: Our infrastructure is protected by enterprise-grade firewalls, intrusion detection systems (IDS), and DDoS mitigation
  • Regular Audits: We conduct regular security assessments and penetration testing by independent third parties
  • Data Backup: Automated encrypted backups ensure data integrity and availability

3. Secure Payments

Our payment processing complies with the Payment Card Industry Data Security Standard (PCI DSS Level 1). This means:

  • We never store your full credit card number on our servers
  • Payment processing is handled by certified, PCI-compliant payment providers
  • All financial transactions use secure, encrypted channels
  • Multi-factor authentication is available for high-value transactions
  • Real-time fraud detection monitors all payment activities

4. Account Security

We provide several features to help you keep your account secure:

  • Strong Password Requirements: Accounts require passwords with minimum length and complexity requirements
  • Session Management: Automatic session timeout after periods of inactivity
  • Login Notifications: Email alerts for login attempts from new devices or locations
  • Account Activity Log: View recent account activity and login history
  • Secure Password Recovery: Multi-step verification process for password resets

Tips to Keep Your Account Safe

  • Use a unique, strong password that you don't use on other websites
  • Never share your login credentials with anyone
  • Log out when using shared or public computers
  • Keep your email account secure, as it's used for account recovery
  • Be cautious of phishing emails — we will never ask for your password via email
  • Report any suspicious activity on your account immediately

5. Fraud Prevention

We employ sophisticated fraud detection and prevention measures:

  • Identity Verification: KYC (Know Your Customer) procedures to verify user identities
  • Automated Monitoring: Real-time monitoring systems detect unusual patterns and suspicious activities
  • Transaction Limits: Configurable transaction limits to prevent unauthorised activity
  • Duplicate Account Detection: Systems to identify and prevent multiple account creation
  • Collaboration: We work with law enforcement and regulatory bodies to combat fraud

6. Infrastructure Security

Our technical infrastructure meets the highest security standards:

  • Hosted in Tier 3+ data centres with physical security, biometric access, and 24/7 surveillance
  • Redundant systems and automatic failover ensure high availability
  • Regular vulnerability scanning and patch management
  • Comprehensive logging and monitoring of all system activities
  • Disaster recovery plan with regular testing

7. Responsible Disclosure

We value the security community's efforts in helping us keep our platform safe. If you discover a security vulnerability, we encourage responsible disclosure:

  • Email security concerns to support@loryclearwaverull.com with "Security" in the subject line
  • Provide sufficient detail for us to reproduce and verify the vulnerability
  • Allow reasonable time for us to address the issue before public disclosure
  • Do not access, modify, or delete other users' data during your research

8. Regulatory Compliance

Our security practices comply with:

  • Australian Privacy Act 1988 and Australian Privacy Principles
  • Victorian Gambling and Casino Control Commission (VGCCC) requirements
  • Payment Card Industry Data Security Standard (PCI DSS)
  • Anti-Money Laundering and Counter-Terrorism Financing Act 2006
  • Notifiable Data Breaches (NDB) scheme under the Privacy Act

9. Incident Response

In the unlikely event of a security incident, we have a comprehensive incident response plan that includes immediate containment, investigation, notification of affected users and relevant authorities (including the OAIC where required), remediation, and post-incident review to prevent recurrence.

10. Contact

For security concerns or to report suspicious activity, please contact us immediately at support@loryclearwaverull.com or call 1800 858 858.