This statement should tell the consumer how the merchant will be using the personal data they have collected.
“We respect and are committed to protecting your privacy. We may collect personally identifiable information when you visit our site. We also automatically receive and record information on our server logs from your browser including your IP address, cookie information and the page(s) you visited. We will not sell your personally identifiable information to anyone.” (And so on...) Or, if they do pass along personal information for whatever reasons, they would state this instead. This policy should be tailored to how the merchant intends to use the information they are given.
This statement should tell the consumer how their personal information is kept secure during the transmission of payment.
“Your payment and personal information is always safe. Our Secure Sockets Layer (SSL) software is the industry standard and among the best software available today for secure commerce transactions. It encrypts all of your personal information, including credit card number, name, and address, so that it cannot be read over the internet.” (Etc.)
This policy should be clearly and specifically spelled out to avoid disputes with cardholders.
“We offer 30 Money Back Guarantee on almost every product we offer. Please call customer service at +1 (305) 859-7745, in advance to obtain an Authorization within 30 days of purchase date.”
“All refunds will be provided as a credit to the credit card used at the time of purchase within five (5) business days upon receipt of the returned merchandise.”