+263 77 262 3103 / +263 71 359 1784 info@dorek.co.zw
USD
Light mode Dark mode
Menu Icon
Close

Latest Posts

The Latest 2025 Cars Now Available for Rent at Dorek Travel
The Latest 2025 Cars Now Available for Rent at Dorek Travel View more
Top 5 Scenic Road Trips to Explore in Zimbabwe with Dorek Travel
Top 5 Scenic Road Trips to Explore in Zimbabwe with Dorek Travel View more
How to Choose the Best Car for Your Next Trip in Zimbabwe
How to Choose the Best Car for Your Next Trip in Zimbabwe View more
A Complete Guide to Planning a Road Trip Across Zimbabwe
A Complete Guide to Planning a Road Trip Across Zimbabwe View more
Inside the Dorek Travel 2025 Fleet: What Makes Our Cars Stand Out
Inside the Dorek Travel 2025 Fleet: What Makes Our Cars Stand Out View more
Dorek - Car Rentals
  10 Kennedy Drive, Greendale, Harare, Zimbabwe
  Hours: Mon–Fri: 7:30 AM – 6:00 PM, Sat: 8:00 AM – 3:00 PM, Sun: Closed (Emergency rentals available)
  info@dorek.co.zw
Add Listing List your car for rent

Security

Home Icon Security

Security Policy – Dorek Travel

Last Updated: 29 November 2025

At Dorek Travel, the security of our customers, vendors, and partners is a priority. This Security Policy explains how we protect the Platform, your data, and transactions made through our car rental and vehicle marketplace.

1. Scope

This Policy applies to all websites, web applications, and related services operated by Dorek Travel, including customer and vendor dashboards, booking flows, and payment integrations.

2. Technical Security Measures

  • Encrypted Connections: We use HTTPS/TLS to encrypt data in transit between your device and our servers, helping prevent interception or tampering.
  • Secure Hosting: Our systems are hosted on reputable infrastructure providers with network firewalls, access controls, and monitoring tools.
  • Access Control: Admin and staff accounts are granted access only on a “need‑to‑know” basis. Strong passwords and additional controls are required for sensitive areas.
  • Data Segregation: Where possible, operational data, backups, and test environments are separated to reduce risk of unauthorised access or accidental exposure.
  • Backups & Recovery: We perform periodic backups of key systems and data to support recovery in the event of hardware failure or other incidents.

3. Payment & Financial Information

  • Third‑Party Gateways: Card, mobile money, and bank payments are processed through trusted third‑party payment providers. We do not store full card numbers, PINs, or CVV codes on our servers.
  • Secure Redirects: When required, you are redirected to secure hosted payment pages that use industry‑standard encryption and security practices.
  • Fraud Monitoring: We monitor for suspicious activity such as repeated failed payments, unusual bookings, or abnormal login patterns and may block or review such actions.

4. Application & Platform Security

  • Regular Updates: Our software stack (including the Carento Laravel template and related components) is periodically updated with security patches and improvements.
  • Input Validation: We apply validation and sanitisation to user input to reduce the risk of common web vulnerabilities such as injection or cross‑site scripting (XSS).
  • Session Management: Sessions automatically expire after periods of inactivity, and sensitive actions may require re‑authentication.
  • Logging & Monitoring: Key events (logins, changes to critical data, admin operations) may be logged for security review and incident investigation.

5. User Responsibilities

Security is a shared responsibility. By using the Platform, you agree to:

  • Keep your password confidential and avoid sharing your account with others.
  • Use a strong, unique password for your Dorek Travel account and change it regularly.
  • Log out from shared or public devices after using the Platform.
  • Inform us immediately if you suspect unauthorised access to your account or notice unusual activity.
  • Comply with our Terms of Use and not attempt to bypass, test, or attack our security measures.

6. Data Breach & Incident Response

  • Investigation: If we detect or are notified of a potential security incident, we will investigate promptly to determine scope, impact, and remediation steps.
  • Containment & Remediation: We will act to contain the incident, secure affected systems, and reduce the risk of further harm.
  • Notification: Where required by law or deemed appropriate, we will notify affected users and relevant authorities, providing information and recommended next steps.

7. Third‑Party Services & Integrations

Our Platform may integrate with third‑party services such as payment providers, analytics tools, or messaging platforms. While we aim to select reputable partners, their security practices are governed by their own policies. We encourage you to review their terms and privacy/security information where relevant.

8. Changes to This Security Policy

We may update this Security Policy from time to time to reflect improvements to our security posture or changes in technology and regulation. The most recent version will always be available on our website with an updated “Last Updated” date. Your continued use of the Platform after changes take effect constitutes your acceptance of the updated Policy.

9. Contact Information

If you have questions or concerns about security on the Dorek Travel Platform, please contact us:

Your experience on this site will be improved by allowing cookies.

These cookies are essential for the website to function properly.

These cookies help us understand how visitors interact with the website.

These cookies are used to deliver personalized advertisements.