T TUWAY CAR RENTAL

Card data transmission security

Last updated: 12/26/2025

1. Our commitment to security

At TUWAY CAR RENTAL we take the protection of our customers’ payment information very seriously. When you enter your card details to make a booking or a payment, we apply technical and organisational measures designed to protect that information against unauthorised access, loss, misuse or disclosure.

This page complements our Privacy Policy and our Terms and Conditions .

2. Encrypted transmission (SSL/TLS)

All sensitive information exchanged between your browser and our servers, including card payment data, is transmitted using industry-standard encryption protocols (such as SSL/TLS). This helps prevent third parties from intercepting or reading the information while it is travelling over the internet.

  • The padlock icon in the address bar indicates that the connection is secure.
  • The URL starts with https://, which shows that encryption is being used.

3. Payment processors and PCI-DSS compliance

We do not directly process full card details on our own systems. Instead, we work with external payment service providers that follow the Payment Card Industry Data Security Standards (PCI-DSS) and specialise in secure transaction processing.

These providers handle the storage, processing and transmission of card data using advanced encryption and strict access controls. We typically receive confirmation of the transaction (approved or declined) and, where applicable, reference IDs or tokens that do not allow us to reconstruct the full card number.

4. Limited storage of payment data

As a general rule, we do not store the full number of your credit or debit card on our servers. Where it is necessary to retain certain information, we will do so in a limited form and only to the extent strictly required for billing, accounting, anti-fraud or legal compliance purposes.

Examples of the kind of limited information we may keep include:

  • Masked last digits of the card number.
  • Card type and issuing bank.
  • Transaction IDs and payment authorisation records.

5. Fraud prevention and internal controls

We maintain basic internal procedures and use tools provided by our payment processors to help detect unusual or potentially fraudulent activity. In certain cases, we may ask for additional information to verify the identity of the cardholder or the legitimacy of the transaction.

When suspicious activity is detected, we may:

  • Temporarily block the transaction or booking.
  • Contact you or the card issuer for verification.
  • Cancel the booking if unauthorised card use is confirmed.

6. Recommended best practices for customers

Although we apply reasonable security measures, the protection of your data also depends on you. We recommend following these best practices when using our website:

  • Do not share full card details or security codes (CVV/CVC) via email, chat or social media.
  • Avoid storing screenshots of your full card details.
  • Always check that you are on our official domain and that the connection is secure (https:// and padlock icon).
  • Log out and close the browser when using shared or public devices.
  • Contact your bank immediately if you suspect unauthorised use of your card.

7. Changes to this security notice

We may update this security information from time to time to reflect technical improvements, changes to our payment providers or applicable regulations. Any changes will be published on this page with an updated revision date.

8. Contact

If you have any questions about how we protect your card data or about this security notice, please contact us using the information available in the Contact section.

Chat WhatsApp