Security and Accessibility of Member Wizard application
Security and Accessibility of Member Wizard
- At Member Wizard data security is our number one priority.
- Our Data base is hosted on an encrypted Microsoft Azure SQL Server hosted in Sydney and protected by firewall.
- Here are their security protocols for Microsoft Azure. https://azure.microsoft.com/en-us/explore/trusted-cloud/privacy
- Secrets are protected by Azure Key Vault.
- API's are Azure Functions accessible by https only.
- Frontend is Angular, dependencies are carefully vetted and protected by Dependabot
- Dependencies are updated to the latest regularly
- Passwords are hashed before saving to database
- When administrators create a password we insist on a 75% minimum strength level (recommended best practice. All data to and from the server is encrypted by SSL.
- We have never been hacked nor are we aware of any person whose data is stored in our system being hacked. We rely on individuals to protect their own devices to avoid hacking and to not share or fail to manage their password security.
- We strongly recommend clients do not store sensitive data such as date of birth with their client records (we do store year of birth).
- The Stripe payment gateway security is provided by Stripe. Member Wizard neither stores nor sees your card details. Here are details of their security protocols https://stripe.com/au/resources/more/payment-security
- Outgoing email transmission is via Amazon Web Services. Here are their security protocols https://docs.aws.amazon.com/whitepapers/latest/aws-overview/security-and-compliance.html
- Member Wizard's Terms and Conditions and Privacy Policy can be accessed here
https://memberwizard.com.au/terms/
https://memberwizard.com.au/privacy/
15. Deliverability of mail is high because MW follows all email sender DMARC, DKIM, and SPF recommended settings to ensure deliverability.
16. Member Wizard has a Accessibility Rating of 95/100 on Chrome Lighthouse.
For more detailed information contact developer@memberwizard.com.au