How safe is it to store private and sensitive information in an online database?
Well, I’m no security expert, not by a longshot.
But I wanted to share a recent experience with a prospective client who was using an online database to store some of his business information and hopefully it might help you avoid some very unpleasant consequences. In this case, no harm was done and the sensitive information was destroyed – but it could have been much, much worse.
Often in the course of determining whether I’m a good fit for a client I get to look around websites that other developers have created. Sometimes I find things that really surprise me and this is one of those cases.
It is very important that you, as a small business website owner, really understand what your website is doing. As an example, I once discovered that a previous web designer had added code to copy himself on all of the emails submitted by a client’s website. Imagine, every single time someone fills out a contact form, the web designer would receive all of that information – for what purpose, I can’t imagine, but suffice to say it was sloppy at best, unethical at worst. But that’s the topic of another article…
Sometimes clients need a database added to their website. Often, this is because there is an application, like an online store, or a blog, that needs to be set up, and these applications use a database to store information.
But sometimes, clients want a custom database installed. It’s very important to understand what kind of information is reasonable to store, and what kind of information is really not appropriate to store in an online database. As a rule, I won’t store any kind of information that if it were to be accessed by another person, would cause harm to anyone else or my own business. But different businesses have different rules.
Say you’re a plumber and you want your client information stored in a database. You want to store names, addresses, phone numbers and email. If someone gains access to that database, the worst that could happen is your clients get email or snail mail that might be spam. Not too bad.
But say you’re in the healthcare industry. Your client names are considered confidential. You fall under the rules of HIPPA. If you’re in an industry like this, you probably should not be storing any client information whatsoever in an online database – or if you want to, be sure you’re using an SSL certificate to send it securely and be sure to warn clients of the potential risk. Many healthcare professionals will warn clients that using email to communicate is not really secure – and if you’re using an online database to keep their info, even if just their names and email addresses – you should probably warn them in a similar fashion.
And in general, I would never store very sensitive information that is used for identity fraud, like social security numbers or credit card numbers in an online database. Perhaps you think this is obvious. I was shocked to find out that this prospective client had done exactly that using shared hosting, without giving any thought to security or identify fraud or confidentiality of his patients. He was asking clients for all kinds of medical information, names, addresses, insurance policy information…social security numbers…and sending it all completely unencrypted (he had not purchased or installed a SSL certificate – so the transmission was not secure)…to a shared hosting database. When I discovered this, I was appalled, and immediately told the client and pushed them hard to delete this database asap. The client agreed, thankfully.
Many of my small business owners are using shared hosting. This means your information is on a machine somewhere that many other people have access to, by definition of shared hosting. Hacking does occur. Also, every single tech support person at your hosting company has access to your database as well, for good reason.
In sum, depending on your industry, the kind of information that you are storing in an online database will vary – but you should be aware of the potential issues resulting from a breech of that data. If a breech isn’t hurting anyone, then you’re fine. But please think through the consequenes carefully – don’t just let your web developer create a database and store all kinds of personal information about your customers without giving it some thought.Jill
Aldebaran Web Design, Seattle
Jill Olkoski has a BS in Engineering, a BS in Computer Science and an MA in Clinical Psychology. She delights in using her advanced technical and psychological skills to help small business owners develop cost-effective and successful websites.