Ecommerce software home
Shopping Cart Software Forum for Ecommerce Templates
Shopping Cart Software Forum for Ecommerce Templates
Home | Profile | Register | Active Topics | Members | Search | FAQ
Username:
Password:
Save Password
Forgot your Password?



Find us on Facebook

Follow us on Twitter

View our YouTube channel


 All Forums
 Technical
 PHP (Unix / Linux / Apache) versions
 Encrypting Customer Data
 New Topic  Reply to Topic
 Printer Friendly
Author Previous Topic Topic Next Topic  

dnyman
New Member

Australia
84 Posts

Pre-sales questions only
(More Details...)

Posted - 02/11/2018 :  21:40:43  Show Profile
We are running ECT version 6.7.3.
With all the scary stories about companies being sent broke by governments prosecuting companies that let customer data be "stolen" and it causing customers grief, we were wondering if there is a way to encrypt ALL the customer data in the database? I realise the customer login password is stored in encrypted form, but can the ECT software cope with all the fields relating to customers (including name, address, email, etc) in the database?

Thanks,
Dave.

dbdave
ECT Moderator

USA
7449 Posts

Posted - 02/11/2018 :  22:34:26  Show Profile
I think that would require some intensive custom work.
Here is my take on the situation.

Big companies, let's take Home Depot here in the United States for example, store customer credit card data as a way to identify you.
This is how they track you when you do not give them your name or address at the checkout line.
The data they collect is very powerful because they have so much of it.
This left them in a position to get hacked and it happened.

It's the credit card data thieves want.

At my online store, we never store any credit card data. Payment data passes right by us and we never see the full card number, much less store it.
Even when a customer owes additional funds, we do a reference transaction or have the customer initiate a new payment. Never taking a card number over the phone.

The only information a hacker could get is names addresses and email addresses. And I guess the products customers ordered.
None of this is really going to help a hacker harm one of our clients.

Personally, I think it's great that you are concerned, but I would not go as far as to encrypt all data in the database.
What I would do if I were you, and this is what I do, is follow best practices.
Do not store or ever write down clients c/c info.
Put your entire site under SSL
Maintain strong passwords everywhere. - Email accounts, hosting, database - all different passwords too.
ECT here, has some great tips throughout the site and forum to help you maintain these best practices.

Edited by - dbdave on 02/11/2018 22:35:04
Go to Top of Page

dnyman
New Member

Australia
84 Posts

Pre-sales questions only
(More Details...)

Posted - 02/13/2018 :  14:37:39  Show Profile
Thanks Dave. This is very sound advice, and I'll pass it on to our GM. We seem to have implemented all of your suggestions, too, so I feel a bit more comfortable about it all right now.

Cheers, and thanks again,
Dave.
Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Reply to Topic
 Printer Friendly
Jump To:
Shopping Cart Software Forum for Ecommerce Templates © 2002-2018 ecommercetemplates.com Go To Top Of Page
This page was generated in 0.02 seconds. Snitz Forums 2000