[bcab] Re: Online security

Some sites insist that you set up an account with them before you can make a 
purchase, for their own 
security purposes.   This usually entails you filling out your name address 
email and password 
details, after which they then send an email to the address you have given with 
a verification link 
in it.

With some sites it is also optional to store your credit card details, along 
with your customer 
profile - Amazon is one example of this, another one is dabs.com.   However 
it's never compulsory at 
the account setup stage.   If you were going to use Amazon regularly though it 
might be worth it, 
because making subsequent purchases from the same supplier in future then 
becomes a lot less time 
consuming.   People certainly need to use their own discretion though, when 
deciding whether or not 
he supplier they are entrusting this information to is trustworthy or not.

Signs that a supplier might be untrustworthy with such details include that:-

* If you haven't heard of the supplier before, the risk is much higher than if 
they are a reputed 
retailer.  Knowing other people's experiences with that supplier can be 
valuable information.   For 
example, I wouldn't recommend anyone to buy anything online from pixmania.  
(long story but true and 
based on first hand experience).
* If the website where you are submitting your details to does not have a 
security certificate 
(meaning that the web address of the page on which the form is, does not have 
an "https://"; 
address), it clearly does not care about site security and should NOT be 
trusted.
* The site should belong to a registered company who by law must provide both 
their company address 
details and their terms and conditions of online purchases.

To be absolutely safe, you should ensure first-line client security.  
Translated this means ensuring 
that your PC contains no viruses, no spyware, trojans or malware etc, before 
attempting to make any 
online purchase.  Time consuming maybe, but good practice!    It is also good 
practice to use a 
second credit card other than your main one, and to have that credit card with 
set limits on 
withdrawals.   Purchases made on a credit card are better insured than those 
made on a debit card 
and this will limit the damage, should you become a victim of card-not-present 
fraud at a future 
time.

Lastly I usually advise people to also give the absolute minimum amount of 
data, when dealing with 
private online suppliers as well.   Why should a retailer from whom you buy a 
music CD need to know 
your date of birth, or mother's maiden name?   Thus if these questions are 
there on a purchase form 
and compulsory fields, they shouldn't be!   Quite simply the company is 
fleecing you for data as 
part of the purchase process, and I see no harm whatsoever in telling them 1st 
April, and Windsor! 
At least that way, if the data they are collecting does end up in 3rd party 
hands, it won't be 
usable maliciously.

Hope this is helpful information, it is just my personal view on this matter.  
I Hope you are able 
to proceed with caution and make a successful online purchase of whatever goods 
you are after! 
There are risks but the plus sides of online shopping are well worth all the 
hassle, that's for 
sure.

Leon Gilbert
Editor, www.vipnews.org.uk
Webmaster, TAFN - The Accessible Friends Network
Support, Social Activities, Training & Fun run by and for blind & visually 
impaired people via the 
internet & voice conferencing.
National UK Registered Charity No 1108043
www.tafn.org.uk
TAFN Helpline (during normal UK office hours) 0845 838 2369

---- Original Message ----- 
From: "Steve Nutt" <steve@xxxxxxxxxxxxxx>
To: <bcab@xxxxxxxxxxxxx>
Sent: Wednesday, April 25, 2007 9:47 PM
Subject: [bcab] Re: Online security


Hi Tom,

Web sites should never store your credit card information, unless you
specifically ask them too.  My online store never does, and never asks.

All the best
--
Computer Room Services:
the long cane for blind computer users.
Telephone Low-call:  08452 606 277
International:  +44(0)1438 742286,
Fax:  +44(0)1438 759589
mobile:  +44(0)7956 334938,
Email:  mailto:Steve@xxxxxxxxxxxxxx
Web site:  http://www.comproom.co.uk


-----Original Message-----
From: bcab-bounce@xxxxxxxxxxxxx [mailto:bcab-bounce@xxxxxxxxxxxxx] On Behalf
Of TOM REID
Sent: 25 April 2007 20:15
To: bcab@xxxxxxxxxxxxx
Subject: [bcab] Online security

Couple of security questions: Do online sites store credit card information
in such a way that someone could use your card to buy something if they
logged into another computer using your account password? What does the
google toolbar store in terms of credit card inf?
Tom
***  BCAB List administration ***

If you wish to unsubscribe, set vacation,, request a digest or carry out
routine maintenance on your subscription to the list then go to:
http://www.bcab.org.uk/mailing-list.html

Alternatively, send an email to bcab-request@xxxxxxxxxxxxx with the word
faqin the subject line. You'll receive an email with advice on managing your
subscription to the list.

If you wish to discuss the administration of the list then contact:
bcab-moderators@xxxxxxxxxxxxx



***  BCAB List administration ***

If you wish to unsubscribe, set vacation,, request a digest or carry out 
routine maintenance on your 
subscription to the list then go to:
http://www.bcab.org.uk/mailing-list.html

Alternatively, send an email to bcab-request@xxxxxxxxxxxxx with the word faqin 
the subject line. 
You'll receive an email with advice on managing your subscription to the list.

If you wish to discuss the administration of the list then contact:
bcab-moderators@xxxxxxxxxxxxx




***  BCAB List administration ***

If you wish to unsubscribe, set vacation,, request a digest or carry out 
routine maintenance on your subscription to the list then go to:
http://www.bcab.org.uk/mailing-list.html

Alternatively, send an email to bcab-request@xxxxxxxxxxxxx with the word faqin 
the subject line. You'll receive an email with advice on managing your 
subscription to the list.
 
If you wish to discuss the administration of the list then contact:
bcab-moderators@xxxxxxxxxxxxx

Other related posts: