Confidentiality is important to maintain privacy, security and trust in personal and professional relationships. Students / applicants will more likely to trust and divulge personal information to school if they believe that school can keep their information confidential. In this case, Mo Beans will apply but not limited to the following methods to our solution to keep client’s information confidential:
Secure Socket Layer (SSL)
HTTPS is a communications protocol for secure communication over a computer network, with especially wide deployment on the Internet. It is not a protocol in and of itself; rather, it is the result of simply layering the HTTP on top of the Secure Sockets Layer (SSL) protocol, thus adding the security capabilities of SSL to standard HTTP communications. SSL is the standard security technology for establishing an encrypted link between a web server and a browser. This link ensures that all data passed between the web server and browsers remain private and integral. Therefore, our system will apply HTTPS to the application submission pages, as well as user login pages.
Data encryption is the process of converting data to an unrecognizable form. It is commonly used to protect sensitive information so that only authorized parties can view it. The sensitivity of the data will logically determine the need for the use of data encryption. Therefore, we can apply encryption to sensitive fields such as applicant name, phone number, address, birth date and applicant ID.
Security updates on regular basis
Our designated web hosting company will keep all software (e.g. Firewall) up to date in order to keep the hosting sites secure. In case website security holes are found in software, applying security updates on regular basis will prevent hackers from abusing them.
Account lockout policy
To prevent from attacker trying a brute force attack to get the right username and password, our system can apply the account lockout policy after 5 consecutive failed logon attempts. Once user account was locked out, user requires contacting appropriate party to reset the password in order to re-activate the user account. On the other hand, we provide additional feature to allow users to reset their passwords, so users can choose to reset their passwords if and when necessary.
Session timeout mechanism
Session timeout mechanism is an important security feature for website design. It helps to protect the privacy and security of data， in case users forgot to log out of the site. Our system has implemented session timeout mechanism where it will automatically log out users in case they leave computers unmanned for periods of time， which will further enhance data security.
Our commitment to security and confidentiality
Mo Beans is committed to protect the confidential information of its employees and clients. In fact, Mo Beans implemented and continues to maintain rigorous safeguards in order to ensure that the personal information provided to Mo Beans remains confidential and is protected against loss or theft, as well as unauthorized access or disclosure.