Will the supplier information on the CSD be secure, specifically the banking details?

Click here to go FAQ on CSD site

Andrea van Jaarsveld

1 Reply

  • Andrea van Jaarsveld

    As part of security the CSD implemented specific features that address identity proofing.

    • When registering on the CSD, not only is the email address confirmed but also a One Time Pin (OTP) sent as an SMS to the cellphone number provided when registering. This is called an 'Out of Band' method of adding an additional layer of identity proofing.
    • When a new bank account is added or any existing bank accounts edited, an OTP will be sent to the supplier's preferred contact as well as a notification e-mail informing the preferred contact that changes were made to the supplier's banking information. Email notifications are also sent when changes are submitted. Both of these are implemented to endeavour to protect the supplier against malicious practices.
    • The use of a CAPTHA functionality limit robots and crawlers to access certain areas of the CSD application.
    • The CSD furthermore implemented role based access control per user per supplier and thus only the supplier's user(s) have access to the supplier information. The CSD does not have an administrative module and thus no single user can be a CSD administrator and access supplier information using the application.
    • All passwords are encrypted on the CSD database. Any additional users the main user creates only have secondary privileges which means those additional users are not able to create other users which ensures that control remains with the main user.
    • The communication channel between the CSD servers and the client's browser implements SSL security which means the communication is encrypted and various other additional technical aspects have been implemented to limit other security breaches such as hacking.
    • The Supplier Summary Registration report can only be accessed by other users if you decide to share both your supplier number and security code with them.
Related