With recent changes being made to the General Data Protection Regulations, we are having to review the way we look at data and how it is used and transferred. You may notice that certain websites start with http:// and others start with https://. The latter are websites with an SSL Certificate, which informs us that the website we are on is encrypted. This is for security on websites where you are putting in personal information. They are most often used on websites that you log into, or e-commerce sites where you are inputting bank details.
The way SSL certificates work is through the use of public key cryptography. Global Sign summed it up well on their website:
“A public key is known to your server and available in the public domain. It can be used to encrypt any message. If Alice is sending a message to Bob she will lock it with Bob’s public key but the only way it can be decrypted is to unlock it with Bob’s private key. Bob is the only one who has his private key so Bob is the only one who can use this to unlock Alice’s message. If a hacker intercepts the message before Bob unlocks it, all they will get is a cryptographic code that they cannot break, even with the power of a computer.
If we look at this in terms of a website, the communication is happening between you and the website.”
Many Clerks have recently been attending training for this and have asked us what they, or we, can do to make their sites more secure. We offer SSL Certificates at £125 in year 1 and £50 in year 2 and onwards. This will mean your website will be marked as secure and have encryption across the entire site, including enquiry forms and any login areas.
If your council has any questions or would wish to talk through the GDPR and your website, or other GDPR related issues, contact us and we will endeavour to provide you with any help we can.