This is how June20 protects your website and data
Cyber attacks, data leaks, identity fraud … Unfortunately, it is a daily reality, the risks are real. A well-protected website is a must! Not only to protect your visitors, but also to comply with European legislation and avoid sanctions. With us, your data is in safe hands. Below, we explain which steps we take to optimally secure your website and why data protection is so crucial.
Why is DATA
PROTECTION a must?
PROTECTION a must?
- Legal obligations
European laws such as GDPR and NIS2 (the updated directive for network and information security in the EU) require companies and organisations to protect personal data. This responsibility legally lies with directors and executives. If you fail to comply with the legislation, you now risk even higher fines. Even though not every company is obliged to follow NIS2, there are some good reasons to apply some of its elements. - Protection of user information
Your online visitors expect their data to be safe and not at risk. - Preventing data breaches
A data breach can lead to financial damage, loss of reputation and legal liability. - Protection against cyber attacks
Websites often contain sensitive information, such as customer data, payment information and user accounts. This makes them attractive targets for cybercriminals. - Trust and credibility
A well-secured website increases the trust of users and customers.
How do we protect
YOUR WEBSITE?
YOUR WEBSITE?
- HTTPS and SSL certificates
By default, we provide your website with HTTPS (HyperText Transfer Protocol Secure), a secure protocol for sending data. To encrypt the communication between your website and your visitors, we use SSL certificates. This ‘Secure Sockets Layer’ prevents the interception of sensitive data, such as passwords and payment information. So your customers and visitors can do their thing on your website or shop with peace of mind. - Two-factor authentication (2FA)
With two-factor authentication (2FA), we add an extra layer of security to all user accounts. This means that in addition to a password, you need a 2nd step to log in, such as a code, fingerprint or facial recognition. Usually, you do this using an app on your phone. Even with the password, it is still difficult to hack your account. - Limited access to sensitive data
We go for the principle of role-based access control (RBAC). This means that only people who really need the data to perform their job get access to sensitive data. For example, a colleague who only processes invoices cannot access customer data he does not need.
In addition, we store as little personal information as possible. The data we do need to store is encrypted. By converting the information into a code, no one can read the data. - Regular software and security updates
We make sure your website is always up-to-date and use extra protection to block attacks before they can do any damage. For example, we regularly update the Content Management System (CMS), including plug-ins for additional features and layout themes. Our WordPress update programme applies all security updates automatically and instantly, so your website is always protected against the latest threats.
In addition, we use a Web Application Firewall (WAF). This is a kind of digital wall that protects your website from attacks such as: SQL injections: attempts to get into your database via input fields (such as forms).
Cross-site scripting (XSS): attacks where hackers try to put malicious code on your website. - Password protection and authentication
We make sure that passwords are strong and stored securely so that they are harder to hack.
In addition, we do not store passwords just like that. Using special security techniques, such as bcrypt or Argon2, we change passwords into unreadable codes. - Regular back-ups and monitoring
We make regular back-ups of your website and store them in a secure location. We also monitor suspicious activity and set up notifications for unusual login attempts so that we can respond quickly to threats. - Limited retention period
We keep sensitive information on your website for as long as necessary and then delete it. This way, we reduce the risk of data breaches and comply with privacy legislation, such as the GDPR.
Not a luxury but
a NECESSITY
a NECESSITY
Remember one thing: securing your website is not a luxury but a pure necessity. Don’t stress, our digital team has the knowledge and techniques to protect your data and minimise risks. So your customers can use your website without any worries.
Want to know how to secure your website?
Avoid fines, reputational damage, dissatisfied customers and, at worst, legal claims.
