Terms and Conditions Privacy Statement We take your privacy very seriously! We are committed to protecting your privacy at all costs, at all times, in all situations. Please be assured that we do not share or sell your personal information, including credit card information, address, telephone numbers, email address. The information we collect is used solely to process your payment for accommodation and/or event reservations. Cancellation/Refund Policy For website reservations: For a full refund of accommodation fees, cancellation must be made five full days prior to check-in time (3 PM if not otherwise specified) and check-in date. If a guest cancels less than 5 days in advance, the first night is non-refundable at full price and 50% of the remaining reservation fees will be refunded. An on-line reservation is officially canceled when the guest clicks the cancellation button. Website Security The Wynne House Inn website is hosted on GoDaddy web hosting service which uses the SHA-2 algorythm to validate SSL certificates. The Wynne house website is configured with a SSL certificate. Payment Security Checkfront The Wynne House Inn processes reservations and payments from The Wynne House website using Checkfront reservation management system. Checkfront is PCI DSS compliant. This compliance extends to all accounts powered by Checkfront and transactions that are processed through our system. The PCI Data Security Standard (PCI DSS) was created by the major credit card companies to ensure the adoption of consistent security measures by all merchants. There are six categories of PCI standards that must be met in order for a merchant to be deemed compliant: Maintain a Secure Network Maintain a Vulnerability Management Regularly Monitor and Test Networks Protect Cardholder Data Implement Strong Access Control Measures Maintain an Information Security Policy Checkfront does not store cardholder data on premises but relies entirely on third party payment gateways to handle these functions. Our third party service providers handle payment processing and storage of cardholder data. All third party processor supported by Checkfront are PCI DSS certified. * Note that your merchant bank may have additional PCI compliance requirements. Software as a Service applications, such as Checkfront, are considered service providers. PCI compliance is confirmed only for accounts that utilize a compatible payment gateway. Square Point of Sale The Wynne House Inn also processes payments taken as a point of sale using Square payment system. Encryption and monitoring Square enables trusted transactions between you and your customers by making secure payments as simple as possible. We do this by bringing to our sellers the technologies and monitoring that once were only available to the largest of merchants. The Square Reader keeps payment information safe by encrypting it as soon as it’s received. Whether the card is EMV chip, magstripe or contactless, Square follows the appropriate protocols to ensure the data stays secure. We monitor your money until it’s deposited into your bank account. In addition, we monitor each transaction to detect suspicious behavior from the moment it is processed to settlement. Square uses our algorithms to spot and freeze malicious or suspicious activity. We’re looking out for you and your customers at each step. Partners in security Square is the merchant of record for every transaction, which means we’ll do the heavy lifting for you. We take care of your compliance and processing. In the event of payment disputes, you don’t have to worry about dealing with the bank. Send us the documentation we need to challenge the dispute, and we’ll take care of the rest. When the bank makes their final decision, we’ll let you know. You just focus on your business. Layered Security Card-processing systems adhere to the PCI Data Security Standard (PCI-DSS). Stopping fraud before it happens We stop fraud via live monitoring programs that analyze transactions as they’re happening. This is known as risk visualization. The approach helps us detect and investigate suspicious activity before a fraudulent charge takes place. This method is not only a pioneering way for us to protect merchants, but it’s also a better way to build an automated system to detect criminals that will scale as our business grows. Card-processing systems adhere to the PCI Data Security Standard (PCI-DSS). Square requires sensitive data to be encrypted using industry-leading methods when stored on disk or transmitted over public networks. Security settings of applications and devices are tuned to ensure appropriate levels of protection. Web and client application security Square’s software is developed using industry standard security best practices. Card-processing applications adhere to PCI Data Security Standard (PCI-DSS) Level 1. Square prohibits the storage of card numbers, magnetic stripe data, and security codes on client devices. Applications developed in-house are subject to strict quality testing and security review. Web development follows industry-standard secure coding guidelines, such as those recommended by OWASP. Paypal Point of Sale The Wynne House Inn also processes payments taken as a point of sale using PayPal payment system. End-to-end encryption is an important element in helping to keep your data and PayPal transactions secure. We employ a team of security and compliance experts dedicated to implementing and educating customers on industry standards. When you register or log into PayPal from your computer or mobile device, we make sure you’re connecting with TLS 1.0 or higher and only make HTTPS connections (HSTS). Strong TLS configurations are the current industry standard for trusted communication channels and allow your information to transmit across the internet in a secure manner. Only allowing HTTPS connections helps to reduce your susceptibility to some passive and active attacks. Key Pinning When you access PayPal via the IOS and Android apps we implement key pinning. Key pinning ensures that when the TLS connection is established by your mobile device it connects only to a true PayPal server. This prevents situations where you launch the app, expecting to connect to PayPal and a PayPal imposter intercepts your connection request and pretends to be us. Data Protection We comply with stringent requirements for data protection while in transit and at rest such as PCI-DSS. In addition to industry and regulatory encryption requirements, PayPal’s Information Security Policies and Controls are reviewed by independent third parties to the following industry standards and guidelines: American Institute of Certified Public Accountants SSAE16 SOC1, AT101 SOC2, Sarbanes-Oxley.


Short-term lodging that feels like home®