Registration:Host: Difference between revisions
From Hackepedia
Jump to navigationJump to search
m added link |
|||
| Line 18: | Line 18: | ||
== External Reading == | == External Reading == | ||
[http://www.privcom.gc.ca/legislation/02_06_01_01_e.asp | [http://www.privcom.gc.ca/legislation/02_06_01_01_e.asp PIPEDA] Make sure you read this site if you will have any Canadian users. It is required that you publish a privacy policy that outlines what you will do with the personal information of your Canadian users. | ||
Revision as of 22:45, 28 March 2007
Hosting a personal information registration process
You've probably been sent this link because you're either the host of a registration process, or you have a desire to create one. Here are some easy steps in deciding if you should be hosting registration.
- Is user registration really required on your website? My users lie, so are you adding an unnecessary step?
- Are you providing a secure mechanism for them to register? This is most often no. Creating a form on an http webpage is one of the worst offenders. These sites are just screaming they have no idea about information security in the least. If you host a web based registration site, ensure it offers SSL, in the least.
- What happens when the user submits their registration? A challenge to the reader is to publicly provide your privacy policy regarding how you store their personal data, and what access control you have around their data.
- How long will that data be stored? Does the user have an easy process to remove their personal data from your server(s)?
- Can you answer all of the typical questions of a Registration:User?
The Bad Registration Host page
External Reading
PIPEDA Make sure you read this site if you will have any Canadian users. It is required that you publish a privacy policy that outlines what you will do with the personal information of your Canadian users.
