Security Policy

Our Commitment to Security

At Kam Ling International Trading Co., we take the security of our website and our customers' data very seriously. We implement industry-standard security measures to protect all information processed through our website.

Security Measures

• HTTPS/TLS Encryption: All data transmitted to and from our website is encrypted using TLS 1.2+
• HSTS (HTTP Strict Transport Security): We enforce HTTPS connections
• Content Security Policy: We use CSP headers to prevent XSS attacks
• Rate Limiting: API endpoints are protected against abuse
• Regular Security Audits: We regularly review and update our security practices
• Error Monitoring: We use Sentry for real-time error tracking
• Input Validation: All user inputs are validated and sanitized
• Secure Headers: X-Frame-Options, X-Content-Type-Options, and other security headers

Privacy & Data Protection

We respect your privacy. View our Privacy Policy for detailed information about how we collect, use, and protect your data.

Responsible Disclosure

If you discover a security vulnerability, we appreciate your help in disclosing it to us responsibly.

How to Report

• Email: kamlingtrading@gmail.com
• Subject Line: "Security Vulnerability Report"
• Include:
  • Description of the vulnerability
  • Steps to reproduce the issue
  • Potential impact
  • Your contact information (optional)

Note: Please do not publicly disclose the vulnerability until we have had time to address it. We aim to respond within 48 hours.

Security Certifications

Our website has been verified by:

• Norton Safe Web: Whitelisted and verified safe
• SSL/TLS Certificate: Valid HTTPS encryption
• Security Headers: A+ rating on securityheaders.com

Contact Information

For security-related inquiries:
Email: kamlingtrading@gmail.com
Business Hours: Monday - Friday, 9:00 AM - 6:00 PM (HKT)