Acozy Haven
Sign in
ShopDuvet setsBedsheetsTowelsCurtainsRugsCurtain bars

Security at Acozy Haven

We take protecting your information and our platform seriously. This page summarizes how we approach security in plain language—it is not a legal contract. For how we handle personal data, see our Privacy Policy.

Our commitment

Trust is essential when you shop for home essentials online. We design our systems with security in mind, monitor for abuse, and work to minimize risk to your account, orders, and payment information.

Encryption and transport

We use industry-standard encryption for data in transit (HTTPS/TLS) between your browser and our services. Sensitive configuration and credentials are handled according to secure deployment practices appropriate to our hosting environment.

Authentication and access control

Accounts are protected with secure sign-in options, including email and password, Google sign-in, and optional two-factor authentication. Access to internal systems and customer data is limited to what is needed for operations, with role-based controls for administrative functions.

Payment security

Online payments are processed by Paystack, a PCI-compliant payment provider. Card and mobile money transactions are handled on Paystack's secure infrastructure—we do not store full payment card numbers on our servers. We receive only the transaction metadata needed to confirm and fulfil your order.

Infrastructure

Our application runs on modern cloud infrastructure with patching, monitoring, and redundancy appropriate to our stage and risk profile. We rely on reputable providers for hosting and related services.

Data protection

We apply safeguards to help protect account, order, and payment-related data from loss and unauthorized access. Retention follows business need and legal requirements; details are described in our Privacy Policy.

Vulnerability management

We review dependencies and application code for known issues and apply updates on a regular cadence. Security is an ongoing process, not a one-time checklist.

Incident response

If we become aware of a breach that affects personal data, we will investigate, take steps to mitigate harm, and notify affected users and regulators as required by applicable law.

Responsible disclosure

If you believe you have found a security vulnerability in Acozy Haven, please report it to support@acozyhaven.com with enough detail to reproduce the issue. Do not access data that is not yours or disrupt the Services. We appreciate good-faith reports and will work with you to understand and address valid findings.

Contact

Security questions? Reach us at support@acozyhaven.com.