Security Considerations on the Whatfix Authoring Platform
  • 03 Jan 2024
  • 2 Minutes To Read
  • Dark
  • PDF

Security Considerations on the Whatfix Authoring Platform

  • Dark
  • PDF

Article summary

Whatfix follows industry best practices to ensure content security. This article explains how we have built our platform by conforming to all major security considerations.

Secure Authoring Methods for Whatfix Content

At Whatfix, data security is a key factor in all aspects. Our aim is to make all our customers comfortable and secure with the product, especially while incorporating Whatfix on their platforms.

The following are some of the measures that we have ensured for all aspects of Whatfix. These include methods that our customers have been following widely to gain more control over the security of Whatfix content.

Secure access via HTTPS

Whatfix uses HTTPS for both its website and application. This means that all the information shared with Whatfix is encrypted, secure, and cannot be intercepted.

Secure SSL for communication

Whatfix uses 256-bit SSL certification for all communication. The SSL encryption is enabled by default. With encryption in place, login credentials shared with us are transmitted securely.

Authorized user access

Access to your Whatfix account is protected by authentication. Only authorized users (with an official email ID) can manage the created content.

The authentication method uses a secure one-way hash password, which encrypts your password and safeguards your original data. This security measure ensures the protection of your sensitive information, making it virtually impossible to compromise.

Sandbox Testing

We recommend creating content in our sandbox environment before deployment. You can also use the beta, test, or non-production environment of your platform. Both of these methods help you avoid any live user data visibility. Having a test or non-production environment helps you validate the accuracy of content before it is published.

Data Privacy

Whatfix does not store any data entered by the users. Whatfix stores only the structure of the page on which the content is created. Whatfix also captures a screenshot of the page to make it available in multi-formats like articles or PDFs. Whatfix also provides you with the ability to blackout or redact any sensitive information that may be present on the page.

User Account for Creation

Your product team gets a dedicated and access-controlled account to create and edit Whatfix content. An active internet connection is required to manage users.

Security of Whatfix Studio

The Whatfix Studio extension is required for content creation and not for the end user (if the Whatfix JavaScript has been included). This extension is fully secure and does not capture any of your browser data.

In cases where our scripts are not used, Whatfix can provide a production extension or a mechanism for organizations to create their own extension. After creation, this extension can be deployed and managed by the respective organization.

After it is published, Whatfix content can also be easily edited using Whatfix Studio from the respective user account.

Was this article helpful?

Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.