Security
SmarterPay Cloud employs various security methods to keep your data safe.
The security features that are visible to, and configurable by, our clients are detailed on this page.
Multi-Factor Authentication
Multi-factor authentication (MFA) is an electronic authentication method in which a user is granted access to a website or application only after successfully presenting two or more pieces of evidence (or factors) to an authentication mechanism.
A good example of two-factor authentication is the withdrawing of money from an ATM; only the correct combination of a bank card and a PIN allows the transaction to be carried out.
SmarterPay Cloud supplements a user-controlled password with either a memorable word and/or a one-time code, delivered either by Email and/or an authentication app that only the user possesses.
In SmarterPay Cloud, Multi-factor authentication is enabled and defined in user Profiles.
Links to MFA in SmarterPay Cloud
Password Policy
The Cloud uses the following Policy for acceptable passwords:
- At least one lowercase letter.
- At least one uppercase letter.
- At least one number.
- At least one non-alphanumeric character (Special characters).
- A minimum of 8 characters.
- Cannot be one of the previous 3 passwords.
- Cannot contain your username.
- Cannot contain your email address.
Password Expiry
Passwords can be set to expire after a set length of time. Please see the Settings Page for further details.
Once a password has expired the User will be prompted, on their next login, to Change Their Password.
Account Inactivity
User Accounts can be set to automatically be disabled after a set length of time of inactivity. Please see the Settings Page for further details.
Once a User has been disabled it will require another user, with the Correct Permissions, to Activate the disabled User.
IP Whitelisting
SmarterPay Cloud allows controlling access to it through IP adresses, more information can be found Here.