As with any software platform, especially those that handle your customer data, it's important to ensure you are aware of the various security options available so that you can keep your data safe.
Our platform has a number of additional security options & settings that can be enabled to further secure your account. This article provides further information on these measures, and provides links to various how-to guides to find out more. In addition, we've also included a number of general tips & tricks to keep your account secure.
Create A Separate Login for Each User
As with any website or system you log into, we always recommend following common-sense security advice and never sharing logins. Our platform does not charge on a per user basis - so it's definitely a wise idea to create a login for each staff member that needs access, as opposed to sharing a login.
Regularly Check Who Has Access
Speaking of separate login for each of your staff, it's always a good idea to check-in every now and then to see who currently has access. If a staff member has left your organisation, you should remove their login from the Users section as soon as possible. Here's how to check;
- Once logged into our platform, click the Account cog icon in the top right corner.
- Select the Users tab.
Regularly Check Permissions & Access Levels
Following on from the above, it's also a good idea to ensure that only those users who need the highest level of access have it. If you have a user who just logs in to view reports, then perhaps it's better to give them Reports-only access.
Use Secure, Unique Passwords & Change These Often
As with any website or system you log into, we always recommend following common-sense security advice and always using secure, unique passwords for our system.
If you have trouble remembering complex passwords, why not use a password manager?
Two-factor authentication is an authentication method by which a user is granted access only after successfully presenting two or more pieces of evidence. This could be a password and a PIN which resets every 60 seconds, or a password and an SMS code, for example.
Our platform support two-factor authentication through the Google Authenticator App, as well as one-time SMS passcodes.
IP Address Restriction
Our platform lets you restrict who can login by locking down which IP addresses can access it.
As always, please check with your system administrator, IT Administrator or IT company for further details or recommendations specific to your business. We also have a general Guide for IT Administrators that might be of interest.