This document has been formulated with the following goals in mind:

• To ensure security, reliability and integrity of GemSuite.com systems and network, the systems and network of GemSuite.com Clients and the network and system of others.
   
• To avoid situations that may cause GemSuite.com to incur civilliability.
   

Finally, please note that this policy applies only to GemSuite.com and Websites that carry the GemSuite.com brand, and not to other companies or organization's Websites to which we are linked. We have clearly marked GemSuite.com and these branded Websites with our logo so you know where this policy applies.

I. Definitions

"Client", "Customer", "Visitor": The trader being a company, partnership, sole trader or other organization or any individual, which undertakes to accept GemSuite.com Services and/or purchase GemSuite.com Products.

"Partner", "Affiliate": A third-party organization that provides Internet development, hosting and/or Internet access services, and/or other services to GemSuite.com and/or Client.

"Services", "Products", "Merchandise": rough and faceted gemstones, carved stones, jewelry, equipment, newsletters or other gem stone industry related products and/or services.

II. Digital Certificate

This web site is secured using a Thawte Digital Certificate. This ensures that in certain areas (like On-Line Payments, etc) we use industry-standard SSL-encryption to protect data transmissions via the World Wide Web.

If any other internet user intercepts the communication he/she will only be able to see it in an encrypted (garbled) form. Certificate technology allows us to decrypt the information, and view it in plain text form. To view certificate status, click the logo on the right hand side. To learn more about Secure Sockets Layer (SSL), follow this link : www.openssl.org.

III. Off-line Issue

While we use SSL encryption to protect sensitive information online, we also do everything in our power to protect user-information off-line. All of our user information, not just the sensitive information mentioned above, is restricted in our offices. Only employees who need the information to perform a specific job (for example, our billing clerk or a customer service representative) are granted access to personally identifiable information.

Furthermore, All employees are kept up-to-date on our security and privacy practices. Every quarter, as well as any time new policies are added, our employees are notified and/or reminded about the importance we place on privacy, and what they can do to ensure our customers information is protected.

Finally, the servers that we store personally identifiable information on are kept in a secure environment, behind a locked cage.

IV. Browser Security Preference Settings

Your browser security preference settings are the key to ensuring secure communication over the internet. This is the first line of defense against theft and unauthorized viewing of confidential personal information. The most popular browsers offer the ability to receive an alert or notification if you change between secure and unsecured transmission modes, or if you receive an invalid site identification notice from a site to which you are about to send a message over an "open" or unsecured connection.

Check the settings of your browser security features to see all the options that are available and those that are currently selected. The presence of security measures surrounding the entry of data on a web page is identified in two ways on your browser:

• The URL identifying the page will always begin with "https://" versus the normal " http:// "
   
• A security symbol to indicate operation in a mode that supports secure transmissions:
    Microsoft Internet Explorer – displays a "closed lock" icon present in the bottom right-hand corner of your browser screen
  
    Netscape Navigator – displays an "unbroken key" icon in the lower left-hand corner of your browser screen
   

The secure system requires a security-enabled browser such as Microsoft Internet Explorer version 2.1 or higher, or Netscape Navigator version 2.0 or higher.

V. Alternative Peace of Mind

In addition to your browser´s internet security features, GemSuite.com has incorporated its own series of measures designed to provide enhanced protection and participate in merchant security compliance program.. SecurityMetrics Site Certification tests online merchant servers to determine if they comply with the top three credit card companies´ security requirements.

• PGP (Pretty Good Privacy)
  PGP is the world's defacto standard for email encryption and authentication, with over 6 million users. It is available for non-commercial use only and can be downloaded at: www.pgpi.org Remember that in order to communicate, the Public keys must be exchanged. You may get copy of our Public key by writing to info@gemsuite.com.
   
• Email Confirmation
  Automatic email confirmation of your order will be sent to you. This is your assurance that we have received your transaction.
   
• On-line Account
  Your account information at our site is password-protected for your privacy and security.
   

VI. Credit Card Assurance

Shopping with us is safe, but if you are unlucky enough to experience fraud, GemSuite.com will reimburse any loss you suffer up to the USD 50 maximum under your credit card company's liability limits. You must, of course, report any fraudulent use of your card to your credit card company in accordance with its reporting rules and procedures.

Most companies will either cover all of the fraudulent purchases or hold you liable for a maximum of USD 50. Should your credit card company discover credit card fraud and hold you liable for some portion of the unauthorized charges, there is no need to worry. Provided the purchase was made through our secure server, GemSuite.com will reimburse you for the maximum liability of USD 50.

VII. Policy Summary

All services provided by GemSuite.com to the Client are subject to the above Security Policy.

• Questions about this policy should be sent to: info@gemsuite.com.
   
• Document last revised on : April 13, 2005. 11:54:56 .