Safety of use of the eFOB eFolder
In the digital age, where our lives are increasingly moving to the online world, the protection of personal data is becoming a key element of security.
Basic safety rules
Here are some specific tips and recommendations on the safe use of the Employee e-File.
Avoid access from untrusted devices and networks, as well as from public places:
Try to use the Employee e-File only from trusted devices and secured Wi-Fi networks. Avoid logging in from public computers or open networks, which may be vulnerable to attacks.
Update your software regularly, especially browsers:
Ensure that the software used to view the Employee e-File, including the web browser and operating system, is always up to date. Updates often include security patches that prevent vulnerabilities from being exploited.
Be careful with attachments and links:
Do not open attachments or click on suspicious links from unknown or suspicious sources, including those that may pretend to be communications from the eFOB system. Phishing attacks can use seemingly legitimate messages to steal your login details or install malware.
Log out after session ends:
After you finish working with the Employee e-File, remember to log out of your account, especially if you are using a computer or device that is used by other people.
Be aware of data protection regulations:
Please read the applicable provisions on the protection of personal data to be aware of your rights and obligations regarding the processing of data in the Employee e-File, including those applicable in your organization.
Integrated identity management in the company
If possible – use an "enterprise identity provider" (IdP)
The best way to avoid all the risks associated with managing passwords for e-Text is to get rid of the problem and connect e-Text with the company's IdP. This is possible if the company has such a service and the company's administrator configures it for the e-File. Thanks to this, users will be able to log in using their company account and password, and depending on the IdP configuration, other benefits may also be obtained:
- users will not have to enter their password as often as when logging in normally
- the administrator will be able to limit logging in only to selected locations (e.g. in Poland) and selected devices (e.g. only computers managed by the company)
- the administrator will enforce the strength and frequency of password changes
- the administrator can block user access to all systems at the same time
- etc
eTeczka offers integration with Google and Microsoft IdP by default, if you need any other integration - contact the sales department.
Note: the above configuration only limits access when logging in to eTekka, further interactions with eTekka take place without IdP control. The introduction of a full access control mechanism, e.g. via IP whitelisting, is also possible - please contact us.
Password security
One of the most basic, yet often overlooked, aspects of security is the use of strong passwords. Below, we'll look at why you should use long passwords and how to make your account more secure.Long passwords and data security:
Passwords that are at least 12 characters long provide a much stronger security barrier because they increase the number of possible combinations. The longer the password, the more difficult it is to crack it using hacking methods.
Rules for creating secure passwords:
In addition to length, it's also a good idea to use a variety of characters, such as uppercase and lowercase letters, numbers, and special characters, to increase the complexity of your password.
TIP: Avoid using easy-to-guess phrases or personal information, such as your name or date of birth, that can be easily found by hackers.
Password Management:
It's a good idea to use password management tools that allow you to store and generate strong passwords.
TIP: Change your passwords regularly and do not duplicate them for different online accounts
Do not share passwords with third parties:
Passwords can be intercepted through any digital communication channel.
Don't share your account passwords with third parties, even if they seem to have good intentions.
TIP: If you suspect that your password has been discovered, change it immediately in the system.
Online security is not only a matter of awareness, but also of practical actions we can take to protect our data against hacker attacks and data theft.
Remember - your safety is in your hands!