Your data, protected

Security & Data Protection

MyQCart is built with security at its core β€” protecting your business data, customer records, and financial information to professional standards at all times.

πŸ”’ HTTPS Encrypted
☁️ Daily Cloud Backup
πŸ‘€ Role-Based Access
πŸ›‘οΈ CSRF Protected
πŸ” Password Hashing
πŸ”„ Regular Updates
How we protect you

Six layers of protection for your business data.

Security is not an afterthought at MyQCart β€” it is built into every part of the platform from the ground up.

πŸ”’

HTTPS & SSL Encryption

All data transmitted between your browser and MyQCart servers is encrypted using industry-standard HTTPS/TLS (SSL) protocols. This means no data can be intercepted in transit β€” your sales, customer records, and business reports are always encrypted.

πŸ”

Data Encryption at Rest

Your stored data β€” including customer records, sales history, and business financials β€” is encrypted at rest on our cloud infrastructure. Even if unauthorised access to the physical servers were somehow obtained, your data would remain unreadable.

☁️

Daily Cloud Backup

Your entire MyQCart database is automatically backed up daily to secure cloud storage. In the event of any hardware failure, accidental deletion, or unforeseen incident, your data can be fully restored β€” eliminating the risk of permanent data loss.

πŸ‘€

Role-Based User Permissions

MyQCart uses a layered permission system so each user sees and can access only what their role requires. Cashiers process sales but cannot view financial reports. Managers control stock but cannot modify system settings. Administrators have full controlled access.

πŸ”„

Regular Security Updates

MyQCart receives regular platform updates that include security patches, vulnerability fixes, and compliance improvements. These are applied automatically with no downtime required from you β€” your platform stays secure without any manual intervention.

πŸ›‘οΈ

Password & Form Protection

All passwords are securely hashed using industry-standard algorithms β€” they are never stored in plain text. All forms are protected by CSRF (Cross-Site Request Forgery) tokens to prevent unauthorised submissions. Database interactions use prepared statements to prevent SQL injection attacks.

Your data, your rights

Data Privacy & GDPR Compliance

ORVIK GROUP LTD (trading as MyQCart) operates in full compliance with UK GDPR regulations, ensuring your data and your customers' data is handled responsibly and transparently.

  • You own your data: Your business data belongs to you. MyQCart processes it only to provide the service you have subscribed to.
  • Data portability: You can request an export of all your business data at any time in a readable format.
  • Right to erasure: You can request deletion of your account and associated data in accordance with our data retention policy.
  • Transparent processing: Our Privacy Policy clearly explains what data we collect, how we use it, and who we share it with.
  • No selling of data: We do not sell your business data or customer records to third parties β€” ever.
Responsible disclosure

Reporting a security concern

If you believe you have discovered a security vulnerability in MyQCart, we ask you to report it to us responsibly so we can address it promptly.

Please report security vulnerabilities directly to our team at Info@myqcart.com with a description of the issue. We will acknowledge all reports within 48 hours and work to resolve confirmed vulnerabilities as quickly as possible. We appreciate responsible disclosure and will not pursue legal action against researchers acting in good faith.
Questions about security?

We take security seriously. So should your POS.

Contact our team for any security or compliance questions β€” we are happy to provide documentation for due diligence purposes.