System security and data safeguarding are of the utmost importance to Credentrust. Our system is designed and managed to provide the necessary security and ensure that only approved users have access only to the data for which they are authorized.
Below is a brief description of the security procedures and policies that ensure your data is secure and cannot be access by unauthorized users, even within your own company.
All user sessions are maintained via SSL / HTTPS to ensure that all data passed between the browser client and Credentrust servers are encrypted during transmission both from and to the client. In addition to SSL encryption, sensitive data such as user passwords, social security numbers and credit card numbers are automatically encrypted prior to storage in the database.
No access to the system is available to a user until they are logged in and authenticated. Once logged in, a user's session automatically times out after a designated period of inactivity, meaning the user must log back in if they have not submitted a form or clicked a link within those that time period. This is a common security measure primarily designed to protect against unauthorized persons within a user's own office from accessing the system when the user is away from his/her desk, but neglected to log out.
After a user logs in, they are presented only with the options for which they have permission. Permissions are assigned by designated users at your company and can be updated at any time. All requests and actions are verified to ensure that the user does in fact have permission for that particular application as well as the requested action.
Credentrust enables you to upload files, such as Word documents or pictures. All uploaded files, including those uploaded by your company and your customers, are stored in a non-public directory that is not accessible via a URL. All requests to view or download these files are authenticated to ensure the user has permission for that file.
| 
Customer App Mgmt