Security 2017-10-30T17:44:42+00:00

MyOrderDesk Storefront Security

Using MyOrderDesk for your Internet storefront is not only smart, but it is the best solution available for your Web-to-Print and online ordering needs. As you would expect, areas related to the products and services you provide, information about your organization, etc., can be visited by the general public. However, access to the job management and control areas of your MyOrderDesk system are NOT open to the public.

Site Access

Your customers will sign in to access their job management, job history and proofing areas using:

  • An e-mail address, and
  • A password.

Job Access

After they sign in, the customer can only see THEIR job files, etc. They will NOT see other customers’ information. Of course, you and your staff will have access to all your customer job records.

e-Commerce Security

MyOrderDesk sites come with built-in SSL 128 bit encryption to protect financial and other sensitive information as it is passed from the customer to you. It is:

  • Automatically used during sign in, and
  • Used on orders requiring credit card data.

Login Security

To provide you with maximum control, your MyOrderDesk storefront has three access levels for your customers and prospects, and four access levels for you and your staff:

  • IP Whitelist. Restrict access to your website to specific IP addresses. Allow only people from specified IP addresses to enter the site.
  • Account Creation. Control whether visitors can create an account.
  • CAPTCHA. Require CAPTCHA verification. A type of challenge-response test, often using an image of distorted letters or numbers, used in computing to determine whether the user is human.
  • Password Length. Passwords are one way encrypted (even we don’t know your passwords). Minimum lengths can be set between 6 and 50 characters. 
  • Security Question. Passwords may be reset after successfully answering a self-set security question. This avoids having a forgotten password sent by email.

Nine Security Access Levels

To provide you with maximum control, your MyOrderDesk storefront has three access levels for your customers and prospects, and four access levels for you and your staff:

  • Customers & Prospects:
    1. General Public have access to your informational home pages and any file transfer, quote request, and similar pages you may designate.
    2. Customers have access to any file transfer and order/job ticket pages you designate, and to their own job records.
    3. Approvers have access to all job records in a designated group.
    4. Viewers have access to all job records in a designated group.
  • You & Your Staff:
    1. Staff access permits one or more of your employees to enter and retrieve customer files.
    2. Job Administrator access permits one or more of your employees to enter, retrieve, and delete customer files.
    3. Site Administrator access permits one or more of your employees to enter, retrieve, and delete customer files, as well as to alter the basic operation of the site including creating order forms, changing color schemes, controlling access levels, etc.
    4. Site Administrator has the same abilities as the owner, with one exception: The owner has total control of the site.

Payment Card Industry (PCI) Compliance

Payment card data never touches our servers or even our internal networks. Payment card data is routed directly to a designated payment processor. This virtually eliminates the risk of unauthorized access of payment card data via MyOrderDesk.

MyOrderDesk qualifies as a SAQ D Service Provider – Attestation of Compliance (AOC) available upon request

File Encryption Security

Protecting customer files that are transferred to you is another built-in feature:

  • The SimpleSend file transfer option can use a password you designate to:
    • Automatically encrypt the files,
    • The encryption password is then needed to open the files.
    • The Windows PDF2U file transfer option can use https to automatically use RC4 128bit encryption during the file transfer.

MyOrderDesk Data Center

The MyOrderDesk servers are physically housed in PagePath’s own locked storage racks in a world-class facility protected by:

  • Video surveillance,
  • Automated site backup,
  • New firewall technology that assures your data remains safe and secure.

MyOrderDesk Server Reliability

Recognizing that those seeking a Service Level Agreement (SLA) have concerns about service reliability, below is an overview of the steps we’ve taken to keep your data secure and to keep downtime to an absolute minimum:

  • Hosted within a leading international collocation facility featuring redundant Tier 1 Internet connections, N+1 redundant battery & diesel power, and redundant HVAC and 24×7 on-site security & technical support.
  • Our systems include additional redundancies to mitigate any single point of failure from negatively affecting your operations.
  • International automated monitoring system that will alert our administrators within 5 minutes of a service outage on a 24×7 basis.
  • After-hours system maintenance and application upgrades with posted notices.

These steps have provided our customers with outstanding up times approaching 100%.