- 23 May 2022
- 2 Minutes To Read
Security Considerations on the Whatfix Authoring Platform
- Updated On 23 May 2022
- 2 Minutes To Read
Whatfix follows industry best practices to assure and ensure content security. This article explains how we have built our platform by conforming to all major security considerations.
Secure Authoring Methods of Whatfix Guides
At Whatfix, data security is a key factor in all aspects. We aim to make all our customers comfortable and secure about the product, especially while incorporating Whatfix on their platforms.
The following are some of the measures that we have ensured for all aspects of Whatfix. These include the methods which our customers have been following widely to have more control over the security of Whatfix guides.
- Secure access via HTTPS
Whatfix uses HTTPS for both its website and application. This means that all the information shared with Whatfix is encrypted, secure, and cannot be intercepted.
- Secure SSL for communication
Whatfix uses 256-bit SSL certification for all communication. The SSL encryption is enabled by default. With encryption in place, login credentials shared with us are transmitted securely.
- Authorized user access
Access to your Whatfix account is protected by authentication. Only authorized users (with official email id) can manage the guides created.
- Sandbox Testing
We recommend creating content on our sandbox environment before deployment. You can also use a beta/test/non-production environment of your platform. Both of these methods help you avoid any live user data visibility. Having a test/non-production environment helps you validate content accuracy before it is published.
- Data Privacy
Whatfix does not store any data entered by the users. Whatfix stores only the structure of the page on which the content is created. Whatfix also captures a screenshot of a page to make it available in multi-formats like articles or PDFs. Whatfix also provides you with the ability to blackout or redact any sensitive information that may be present on the page.
User Account for Creation
Your product team gets a dedicated and access-controlled account to create and edit Whatfix guides. An active internet connection is required to manage users.
Security of Whatfix Editor
In the cases where our scripts are not used, Whatfix can provide a production extension or a mechanism for organizations to create their own extension. After creation, this extension can be deployed and controlled by the respective organization.
After it is published, Whatfix content can also be easily edited using the Whatfix Editor from the respective user account.