Ecommerce Privacy and Security on the Internet 2012
As an online store owner, you have to juggle many responsibilities. Today, one of the most important responsibilities of running an online store is website security. Security features are important to any business dealing with financial data and you need to make sure that all of the information remains protected.
Basic security elements such as SSL security, website maintenance and secure payment gateways are standards:
- SSL security is used to authenticate your website’s identity and encrypt your websites data. SSL certificates make sure that sensitive data transmitted to and from your site is fully secured and encrypted to prevent access.
- Maintaining and updating your website platform regularly is an important precaution you can take to protect users credit card info. Technology is constantly changing, so make sure you’re site security meets security standards.
- Payment and credit card processors such as one of Paypal’s business solutions, Google Checkout, and authorize.net are a few of the many secure options to choose from.
Ecommerce websites face security issues all the time, and it’s your job to keep your customers safe with the proper protection. Fortunately, there are many ecommerce platforms on the market today that meet or exceed todays tough security standards.
3dcart recently launched a new beta program program called “Community Alert”. Any new or current online retailers using 3dcart can opt-in to a free new fraud protection. With 3dcart’s new fraud program, users gain access to fraud prevention data from some of the largest merchants on the web—a huge value addition for people breaking into ecommerce and still evaluating shopping cart options.
Every 3dcart merchant has the ability to contribute to a “Community Alert” by reporting fraudulent orders to a community database. Based on these reports, retailers taking part in the program receive a free Community Score that rates the risk of accepting the transaction. Scores are generated in real-time as orders enter the merchant’s system so retailers can make quick decisions.
“Community Alert strengthens the bonds of 3dcart’s merchant community while offering a free way to improve security and minimize risk,” said 3dcart CEO Gonzalo Gil. “We added the feature based on two major differentiators: proactive recognition of potential fraud and the power of experienced human intervention to help measure the actual risk.”
Scores are rated based on three color-coded levels of risk and a 10-point number scale, making them simple to read and react to quickly and efficiently. The score for each customer also lists the number of transactions associated with them across the community.
3dcart guarantees complete privacy for each merchant that takes part in the program. Even though fraud statuses and scores are shared with the community, no information from stores or shoppers is compromised, ensuring total anonymity and protection of other sensitive data.
Shopify takes security very seriously. Their checkout is 128-bit Secure Socket Layer (SSL) encrypted to protect personal data and every Shopify store comes with unlimited hosting on “Level 1 PCI Compliant Debian Linux servers” that are guarded by high tech firewalls. Shopify was the first hosted solution that offered a Content Delivery Network (CDN) – which is a large network of servers placed around the world to ensure customers can load your store fast.Shopify also has a team team of advanced fraud protection system built within their platofrm, so merchants can be alerted immediately if any suspicious activity is detected.
Vend is packed with many security features including SSL certificates, user access rights, enterprise grade hosting and more. Vend takes many security precautions to ensure to ensure your data is safe. They continuously evaluate and reinforce their security policy and practices. Here’s a snippet from their website:
Our servers have SSL Certificates signed by global leaders in certificates, COMODO, so all data transferred between the users and the service is encrypted. The encryption is the same as that used for internet banking.
No one has access to your organisation unless invited by you and with a level of user permission selected by you. You can remove any invited users whenever you want. You also have the option to invite Customer Care, but it’s for support purposes only and completely at your discretion.
Our servers are located within Rackspace tier-one, enterprise grade hosting facilities. Access is restricted to authorised Rackspace staff by a combination of biometric systems and 24/7 onsite security guards, and is continually audited to meet SAS 70 Type II standards.
Firewalls & Network Security
External access to our servers is controlled by multiple layers of firewalls, intrusion protection systems and routers, which are configured and monitored according to industry best practice.
Our own internal office networks are isolated from any customer data by design.
Third Party Access
Transfer of data to any third parties can only occur with your consent and to organisations that provide adequate data protection.
We run offsite backups hourly, full backups daily so we can immediately recover your data if necessary.
Data protection and backup
All customer data is backed up daily. We also run a continuous off site data back-up service into a second Rackspace facility for further real-time data protection. Because we back-up your data, you don’t need to. If you want to get your data out of Vend at any time then you can simply use the History, Product or Customer export tools to export your data. Exporting to CSV is ideal because they can be easily read and are also in a form that can be manipulated for import into other systems if required.
Volusion is PCI certified, and also contains many other important safety features such as SSL certificates, a fraud score for each order, members-only features of the website, automatic crash protection and CAPTCHA validation for all of the order submissions.
Volusion contains Secure Socket Layer (SSL) encryption, multiple administrator logins, the ability to determine which administrative sections are accessible, members-only website capabilities, administration area access history, automatic crash protection, CAPTCHA-type image validation for all form submissions, and a fraud score feature helps identify the types of behaviors most associated with fraudulent orders. Also, Vollusion ban them from your store with an integrated IP-blocking security feature.
BigCommerce claims to be “The most secure hosted ecommerce platform on the planet” with “Bank like Security”. Every BigCommerce online store uses a shared SSL certificate by default and customer data is protected behind their 128-bit SSL firewalls. They have a service to block unwanted users, a network intrusion detection system as well as disaster and recovery support should something go awry. BigCommerce is also partners with GeoTrust, the world’s #1 provider of security products for online retailers. (http://www.bigcommerce.com/features/hosting/
Having a safe and secure store is vital to any online business and is necessary to ensure a safe experience for your customers. Remember, your customers want to shop at an eCommerce store they can trust.