Welcome to lhs!
Shipping & Returns:
Your product(s) will be shipped out in the order we receive them, unless you choose to upgrade to USPS Priority, Express and UPS 3 Day, Second or Next Day.
Our FREE shipping is via USPS First Class mail with Delivery Confirmation, so no signature is required. It takes from 2-7 business days (once shipped) to arrive if you are in the US and up to 14 Business days for all international orders.
Please be aware that our responsibilty is to get your orders packed and out to the PO or UPS. Any issues regarding delays after we hand these carriers your packages MUST be dealt with directly through the carrier you chose.
Due to the nature of the products, there will be no refunds.
Legal Herbal Shop will NOT disiminate or sell your personal information to third parties. We will keep all information given to us by our customers private and for use only to ship our products to you or contact you only in regards to your order, if necessary.
Packaging of our products are discreet and will be shipped in that manner to you.
If you have any questions or concerns, please feel free to contact us using the web form in the “Contact Us” page.
Secure Shopping SSL
SSL allows sensitive information such as credit card numbers, social security numbers, and login credentials to be transmitted securely. Normally, data sent between browsers and web servers is sent in plain text—leaving you vulnerable to eavesdropping. If an attacker is able to intercept all data being sent between a browser and a web server they can see and use that information.
More specifically, SSL is a security protocol. Protocols describe how algorithms should be used; in this case, the SSL protocol determines variables of the encryption for both the link and the data being transmitted.
SSL secures millions of peoples’ data on the Internet every day, especially during online transactions or when transmitting confidential information. Internet users have come to associate their online security with the lock icon that comes with an SSL-secured website or green address bar that comes with an extended validation SSL-secured website. SSL-secured websites also begin with https rather than http.
Already understand the basics of SSL Certificates and technology?Learn about SSL cryptography >>
Where Do Certificates Come In?
All browsers have the capability to interact with secured web servers using the SSL protocol. However, the browser and the server need what is called an SSL Certificate to be able to establish a secure connection.
How Does the SSL Certificate Create a Secure Connection?
When a browser attempts to access a website that is secured by SSL, the browser and the web server establish an SSL connection using a process called an “SSL Handshake” (see diagram below). Note that the SSL Handshake is invisible to the user and happens instantaneously.
Essentially, three keys are used to set up the SSL connection: the public, private, and session keys. Anything encrypted with the public key can only be decrypted with the private key, and vice versa.
Because encrypting and decrypting with private and public key takes a lot of processing power, they are only used during the SSL Handshake to create a symmetric session key. After the secure connection is made, the session key is used to encrypt all transmitted data.
- Browser connects to a web server (website) secured with SSL (https). Browser requests that the server identify itself.
- Server sends a copy of its SSL Certificate, including the server’s public key.
- Browser checks the certificate root against a list of trusted CAs and that the certificate is unexpired, unrevoked, and that its common name is valid for the website that it is connecting to. If the browser trusts the certificate, it creates, encrypts, and sends back a symmetric session key using the server’s public key.
- Server decrypts the symmetric session key using its private key and sends back an acknowledgement encrypted with the session key to start the encrypted session.
- Server and Browser now encrypt all transmitted data with the session key.
Why Do I Need SSL?
One of the most important components of online business is creating a trusted environment where potential customers feel confident in making purchases. Browsers give visual cues, such as a lock icon or a green bar, to help visitors know when their connection is secured.
In the below image, you can see the green address bar that comes with extended validation (EV) SSL Certificates.
If your site collects credit card information you are required by the Payment Card Industry (PCI) to have an SSL Certificate. If your site has a login section or sends/receives other private information (street address, phone number, health records, etc.), you should use SSL Certificates to protect that data.
Your customers want to know that you value their security and are serious about protecting their information. More and more customers are becoming savvy online shoppers and reward the brands that they trust with increased business.