Catalog Choice protects its users and merchants in the following ways:

Authentication of users

1. Catalog Choice authenticates its users using round-trip email verification. Once a user signs up for an account, an email is sent to the email address provided by the user. The user must click the link embedded in the email to verify receipt, confirming the ownership of the email address. This is the same approach as used by the FTC on the Do Not Call registry (donotcall.gov).
2. The Catalog Choice user registration process is secured by the use of https encryption in communications between the users' browser and the Catalog Choice servers.
3. Catalog Choice requests that users enter their merchant customer number when opting-out of catalogs. This field is not required, but users are encouraged to enter this information.
4. Catalog Choice uses advance monitoring to ensure that accounts are not being established by automated scripts (referred to as "bots").

Merchant security

Access to merchant customer opt-out data is secured by three means:

1. Authentication. A valid merchant account username and password is required to initiate the download process.
2. Communication Encryption. The download link communication is encrypted via an "https" connection to the Catalog Choice server.
3. Data Encryption (optional). An optional parameter can be added to the download request, that will cause our server to compress the CSV data file into a password-protected ZIP archive.