Here at Lighthouse Catholic Media, we are very concerned about keeping your identity and personal information secure and protected. Because a lot of this work goes on behind the scenes and unnoticed, we would like to explain the measures we have taken so you can be sure that your information will be treated with the utmost care and precaution.
While we try to cover any questions you may have, if something is not clear feel free to email us at email@example.com. If it is a common question, we may add it to this page.
Due to the extreme sensitive nature of credit cards, we do not actually store your entire credit card on our servers. When you do create a payment profile with us, we only store the billing name, expiration date, and the last 4 digits of the card. The rest of the payment information is stored and processed on the servers of a separate payment gateway. The company is a wholly owned subsidiary of Visa, Inc., is used by over 370,000 businesses and processes over $120 billion each year.
Further, in order to process credit cards, we are required to meet PCI Compliance, which is a standard any business must meet in order to handle payment processing by major credit card companies. In order to meet PCI Compliance, we are scanned for any vulnerabilities 4 times a year. At Lighthouse, we go above and beyond that requirement, and are scanned every single day by a well known security company, McAffee. You can see the results of our daily scans in the footer of every page by looking for the McAffee image. It will show the last day our site was scanned and passed, so you know your information will be safe.
You may notice on our Login page that you are presented with the option to login with more than just a user name and password. That's because we have implemented the OpenID standard on our website. OpenID is a more secure way of authenticating users without the need to create yet another user name and password.
One thing OpenID does NOT do is give us your password. Instead, when you are already logged into to a supported account, we verify with them that you are logged in, and they in turn ask you to allow us access to that information.