Last Updated: September 19, 2025

Your Payment is 100% Secure
All transactions are protected by bank-level security
Processed by Banca Intesa ad Beograd | Protected by 3D Secure | PCI DSS Compliant
Bot Protection by Cloudflare Turnstile

Merchant Information:
Butternut doo Jagodina
doing business as Limelightherb.com
Address: Kneza Milosa 129, Jagodina, Serbia
Company Registration (Matični broj): 21363898
Tax ID (PIB): 110569493
Phone: +381600317601
Email: support@limelightherb.com

1. BANK-LEVEL SECURITY

All payment transactions on our website are processed by:

• Banca Intesa ad Beograd - PCI DSS Level 1 certified
• NestPay Payment Gateway - EMV 3-D Secure certified
• 256-bit SSL/TLS Encryption - Military-grade protection
• SSL Certificate Provider: Cloudflare
• Bot Protection: Cloudflare Turnstile - Protects against automated attacks without annoying CAPTCHAs

2. 3D SECURE AUTHENTICATION

Every credit/debit card transaction is protected by your bank's verification system:

• Verified by Visa - For all Visa cards
• Mastercard SecureCode - For all Mastercard transactions
• American Express SafeKey - For Amex cards
• Maestro SecureCode - For Maestro cards
• Dina 3D Secure - For Dina cards

This means your bank will verify your identity with a password or SMS code before any payment is processed, adding an extra layer of security against unauthorized use.

3. WHAT WE NEVER DO

❌ We NEVER store credit/debit card numbers
❌ We NEVER see your complete card details
❌ We NEVER have access to your CVV/CVC security code
❌ We NEVER keep card data in emails or databases
❌ We NEVER process payments on our servers
❌ We NEVER share payment information with third parties

4. HOW SECURE PAYMENT WORKS

1. Shop Securely: Browse and select products on our SSL-protected website
2. Bot Verification: Cloudflare Turnstile ensures you're a real person (no annoying puzzles!)
3. Checkout: Review your order with prices shown in USD
4. Payment Redirect: You're securely redirected to Banca Intesa's payment page
5. Enter Card Details: Input card information directly on the bank's PCI-compliant page
6. 3D Secure Verification: Your bank verifies the transaction via password/SMS
7. Processing: Payment is processed in Serbian Dinars (RSD)
8. Confirmation: We receive only transaction ID and approval status
9. Order Complete: Your order is confirmed and processed

5. CURRENCY PROCESSING

Important Currency Information:
All payments will be effected in Serbian currency – dinar (RSD). The amount your credit card account will be charged for is obtained through the conversion of the price in USD into Serbian dinar according to the current exchange rate of the Serbian National Bank. When charging your credit card, the same amount is converted into your local currency according to the exchange rate of credit card associations. As a result of this conversion there is a possibility of a slight difference from the original price stated in our web site.

6. SECURITY CERTIFICATIONS

• Payment Processor: Banca Intesa ad Beograd (PCI DSS Level 1 Compliant)
• Payment Gateway: NestPay (EMV 3-D Secure Certified)
• Website Security: SSL/TLS Certificate from Cloudflare
• Bot Protection: Cloudflare Turnstile
• Compliance: EU PSD2, Serbian Electronic Commerce Law
• Data Protection: GDPR and Serbian Data Protection Law compliant

7. SSL/TLS ENCRYPTION & BOT PROTECTION

Our entire website is protected with SSL/TLS encryption. You can verify this by:

• Looking for the padlock icon (🔒) in your browser's address bar
• Checking that our URL begins with "https://" not "http://"
• Clicking the padlock to view our valid SSL certificate from Cloudflare

Cloudflare Turnstile Protection:
• Protects against bots and automated attacks
• No annoying CAPTCHAs or puzzles to solve
• Seamless verification happens in the background
• Ensures only real humans can complete transactions

This ensures all data transmitted between your browser and our server is encrypted and cannot be intercepted by third parties.

8. FRAUD PREVENTION MEASURES

We employ multiple layers of fraud prevention:

• IP address geographical verification
• Shipping and billing address verification
• 3D Secure mandatory for all transactions
• Real-time suspicious activity monitoring
• Order verification for high-value purchases
• Transaction pattern analysis
• Cloudflare Turnstile bot detection

9. OTHER PAYMENT METHODS

Besides credit/debit cards, we also accept:

PayPal: Processed entirely through PayPal's secure infrastructure. We never see your PayPal password or linked card details.

Bank Transfer: Processed through standard banking channels with bank-level security.

Alternative payments: All handled by certified third-party processors with their own security measures.

10. REFUND SECURITY

Refund Policy for Card Payments:
In the event of returning goods and refunding the customer who has previously paid with one of the payment cards, either partially or in full, and regardless of the reason for the return, Butternut doo Jagodina is obliged to process the refund exclusively via VISA, EC/MC, Maestro, Amex, and Dina payment methods, which means that the bank, at the seller's request, will carry out the refund to the cardholder's account.

11. DATA PROTECTION

Your payment security is ensured through:

• Compliance with Serbian Personal Data Protection Law
• GDPR compliance for EU customers
• Regular security audits and updates
• Staff training on data protection
• Secure data storage with encryption at rest
• 10-year retention of transaction records per Serbian tax law (no card details)

12. IN CASE OF SECURITY CONCERNS

If you notice any suspicious activity related to your order:

1. Contact us immediately:
Email: support@limelightherb.com
Phone: +381600317601

2. Contact Banca Intesa e-commerce support:
Email: ecomm_podrska@bancaintesa.rs

3. Contact your card issuing bank immediately
Report any unauthorized transactions to your bank

13. OUR SECURITY COMMITMENT

We are committed to:

• Maintaining the highest level of payment security
• Regular updates of our security systems
• Transparent communication about our security practices
• Never compromising on customer data protection
• Continuous improvement of our security measures
• Full compliance with all relevant security regulations

14. REMEMBER

Key Security Points:

• We only receive confirmation that your payment was successful
• All sensitive payment data is handled exclusively by Banca Intesa's certified systems
• Your card details never touch our servers
• Every transaction is protected by multiple security layers
• All payments are processed in Serbian Dinars (RSD) regardless of display currency
• Cloudflare Turnstile protects against bots without annoying CAPTCHAs

15. QUESTIONS?

If you have any questions about our payment security, please don't hesitate to contact us:

Butternut doo Jagodina
doing business as Limelightherb.com
Email: support@limelightherb.com
Phone: +381600317601
Address: Kneza Milosa 129, Jagodina, Serbia
Business Hours: Monday-Friday, 9:00-17:00 CET

Payment Partners:
Banca Intesa ad Beograd | NestPay Gateway | Verified by Visa | Mastercard SecureCode | Cloudflare Security