Last Updated: May 16, 2026
Our Commitment to Security
At Mini Drone Shop, protecting your personal information and ensuring secure transactions is a core part of how we operate. We believe in being straightforward about our security practices so you always know exactly what we do to keep your data safe.
Website Security
SSL/TLS Encryption
- 256-bit SSL encryption for all data transmission
- HTTPS protocol across the entire website
- Secure connection indicated by the padlock icon in your browser
- SSL certificates are automatically renewed
Infrastructure Security
The following protections are provided by our cloud hosting platform and are not operated directly by us.
- Secure cloud hosting with enterprise-grade protection
- DDoS protection and mitigation
- Web Application Firewall (WAF)
- Automatic security patches at the infrastructure level
Payment Security
PCI DSS Compliance
We do not process or store card data ourselves. All payments are handled entirely by our payment processor, which holds PCI DSS Level 1 certification - the highest level in the industry. We never see your card number.
Secure Payment Gateways
- Payments processed through Razorpay, a PCI DSS Level 1 certified gateway
- Payment data never stored on our servers
- 3D Secure authentication for card transactions
Supported Payment Methods
✓ Credit/Debit Cards (Visa, Mastercard, RuPay, Amex)
✓ UPI (Google Pay, PhonePe, Paytm, BHIM)
✓ Net Banking
✓ Digital Wallets (Paytm, PhonePe, Amazon Pay)
All processed through secure, encrypted channels
Account Security
Password & Authentication
- Minimum 8 characters required
- Mix of uppercase, lowercase, numbers, and special characters recommended
- Passwords are hashed and never stored in plain text
- Secure password reset via email verification
- Email verification required for new accounts
Best Practices for Users
- Use a strong, unique password
- Never share your password with anyone
- Log out when using shared computers
- Keep your contact information updated
- Review your order history regularly
- Report suspicious activity immediately
Data Protection
Data Encryption
- Encryption at rest for stored data
- Encryption in transit for all data transmission
- Secure database with row-level access controls
Access Controls
- Role-based access control (RBAC) for internal systems
- Principle of least privilege applied where possible
- Secure API authentication
Privacy Compliance
- We collect only the data necessary to fulfil your order
- Compliance with applicable Indian data protection laws
- Data deletion available on request
Security Monitoring
The following are provided at the infrastructure and platform level:
- Platform-level logging and anomaly detection
- Automatic vulnerability patching at the hosting layer
- We monitor our systems during business hours and respond to reported issues promptly
Third-Party Security
We only work with third-party service providers that hold recognised security certifications in their respective domains:
- Payment processors that hold PCI DSS Level 1 certification
- Cloud and hosting providers that hold SOC 2 compliance
- Communication providers that follow industry-standard security practices
We rely on our partners' publicly available compliance documentation and certifications rather than conducting our own independent audits.
Fraud Prevention
Most fraud prevention measures are handled by our payment gateway and are not systems we operate independently.
- Fraud detection, AVS, CVV checks, and velocity monitoring handled by our payment processor
- 3D Secure authentication adds an extra layer for card transactions
- We manually review orders that appear unusual before dispatch
Reporting Security Issues
If you discover a security vulnerability or have security concerns, please reach out and we will take it seriously:
Security Contact
Email: security@minidroneshop.com
Phone: +91-8639180548
For full contact details, visit our Contact page.
We aim to respond to all security reports within 48 hours during business days (Monday - Friday, 10 AM - 5 PM IST).
Security Incident Response
In the event of a security incident we will:
- Investigate and contain the issue as quickly as possible
- Notify affected users as soon as we have confirmed details
- Be transparent about what happened and what we are doing about it
- Coordinate with relevant authorities if required
Our Security Foundation
Mini Drone Shop does not yet hold independent certifications such as ISO 27001. Our platform is built entirely on enterprise-grade, independently audited cloud infrastructure and payment providers - all of which carry their own industry certifications including SOC 2 Type II and PCI DSS Level 1. Your data and payments never touch systems that fall below those standards.
We are actively working towards formal certifications and will update this page as milestones are reached.
Stay Safe Online
Remember:
- We will never ask for your password via email or phone
- Always verify the URL (https://minidroneshop.com)
- Be cautious of phishing emails claiming to be from us
- Keep your devices and browser updated
- Avoid using public Wi-Fi for transactions