Saturday, March 14, 2009

Website Requirements for Cruise Lines

The following best practices should be taken into consideration by cruise line companies when building their websites and designing their service policies:
  • Require website membership to book cruise reservations. By requiring customers to become website members, merchants can collect additional information that can help assess risk. When creating member profiles:
    • Verify customer data before storing it.
    • Implement strong security measures such as secure data storage and limited employee access to protect sensitive customer information.
  • Collect, verify and store email addresses. Customers should be asked to provide a valid email address during the registration process. An invalid email address may be an indicator of risk.
  • Issue confirmation numbers for cruise reservations. Issuing reservation confirmation numbers helps assure customers that their cruise bookings were successful and will be honored on the date of the trip. Merchants should build their systems to support customer reservation confirmation inquiries.
  • Issue a cancellation number to the cardholder. A cancellation number must be issued when a cruise is properly canceled. Cardholders should be advised to save their cancellation codes.
  • Clearly display change your fee policy and pricing. Informing customers in advance of the terms and conditions of your change fee policy and the amount of fees that will be assessed if booked itineraries are changed helps reduce customer inquiries and disputes. This information should be prominently displayed on your website so that customers can review it before purchasing tickets.
  • Clearly display refund rules on both your booking and confirmation pages. Making refund policies available to customers can help preserve customer relations when they cancel their cruises. Displaying refund rules on both your confirmation and booking pages helps educate customers about your refund policy prior to ticket purchasing and then it reinforces this policy after the booking has been made.
  • Determine whether or not to allow third-party sales and establish appropriate policies. By allowing tickets for cruise passengers to be purchased by third parties, merchants increase sales but also increase their risk exposure. For example, a criminal may use the information from a legitimate card to fraudulently purchase a ticket in his or her own name. Merchants should consider implementing the following best practices:
    • If you decide to allow third-party purchases over the internet, adequate procedures should be established to minimize your risk exposure. For example, you may require that third-party purchasers have the same last name as the ticket recipient or to accompany the ticket recipient during the travel.
    • If you decide not to allow third-party purchases over the internet, adequate procedures should be established to direct third-party purchasers to your physical sales offices.
  • Capture and save Internet Protocol (IP) addresses. It is important to know the IP addresses of the Internet Service Providers (ISPs) from which customers make purchases. A database of these addresses can be used to develop your fraud-screening tools based on transaction characteristics.

Posted by mss at 11:58 AM

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)