This Security page explains how Novelle approaches payment security, account protection, data protection, and responsible vulnerability reporting for https://novelle.wedding.
The website is operated by Nova Group Sp. z o.o., Tax ID / VAT ID PL7011215529, KRS 0001117840, REGON 529224431, registered address Żurawia 6/12 Lok. 745, 00-503 Warszawa, Poland. Security contact: security@novelle.wedding.
1. Payment security
Payments may be processed by providers such as Stripe or Worldline. These providers may handle card data, authentication, fraud-prevention checks, transaction security, and payment authorization.
Novelle does not store full card details. Card entry, card authentication, payment authorization, and fraud-prevention checks are handled through the relevant payment provider.
2. Data protection measures
Novelle uses technical and organizational measures designed to protect personal data, customer information, supplier information, account access, and service records.
These measures may include:
- HTTPS/TLS encrypted transmission where supported;
- access controls and role-based operational access;
- authentication and session protection;
- payment-provider tokenization and hosted payment components;
- logging and monitoring for security and abuse prevention;
- limited access to personal data based on operational need;
- backup, recovery, and continuity practices appropriate to the service;
- data minimization and retention controls;
- provider due diligence for payment, hosting, analytics, authentication, and support tools.
3. Account security
If account functionality is available, users are responsible for keeping login credentials secure and for using a secure email account. You should contact support@novelle.wedding if you believe your account or order email has been accessed without authorization.
Novelle may suspend, restrict, or reset account access where we detect security risk, suspicious activity, fraud, misuse, or violation of the Terms of Service.
4. Responsible disclosure
If you believe you have found a security vulnerability affecting Novelle, contact security@novelle.wedding.
Please include:
- a clear description of the issue;
- affected page, endpoint, or workflow;
- steps to reproduce the issue safely;
- screenshots or logs if useful;
- your contact email.
Do not access, copy, alter, delete, disclose, or disrupt data, accounts, payments, suppliers, customers, or systems. Do not perform destructive testing, social engineering, spam, denial-of-service activity, or attempts to bypass payment security.
5. Incident communication
If Novelle identifies a security incident that affects users, payments, accounts, or personal data, we will assess the incident and take appropriate steps under applicable law, provider requirements, and data-protection obligations. Where required, affected users, payment providers, or authorities will be informed.
6. Customer responsibilities
Customers, suppliers, and partners should:
- provide accurate contact details;
- keep account credentials secure;
- avoid sharing login links or payment links publicly;
- confirm supplier payment instructions directly with the supplier;
- report suspicious messages or payment requests;
- use secure devices and updated browsers;
- contact Novelle if an email, invoice, or payment request appears suspicious.
7. Contact
Security: security@novelle.wedding
Support: support@novelle.wedding
Website: https://novelle.wedding