Professional learning online community of teachers and for teachers.

Security

Our goal is to make your online interaction with TeacherPH as valuable as possible, delivering information that is relevant to your needs. We understand many people have concerns about the security of their information, especially when providing their information via the Internet. We are committed to protect the information you provide us online in the same way we protect all our customer information. We take the privacy of customer data very seriously at TeacherPH as you can see in our privacy commitment.

Your information is not automatically accessible via the Internet. Once you request online access to your information, we request specific information about you to confirm your identity. We then use several security measures to confirm this information, and only then do we allow online access to your information.

When making purchases via our website, your credit card information is safe and secured. Reliable and trusted service providers who specialize in processing online payments handle all credit card transactions on our behalf.

How we protect your information online

On our website, we use a combination of Secure Socket Layer (SSL) encryption, web application firewall (WAF), Open Web Application Security Project (OWASP), two-factor authentication, denial-of-service (DDoS) mitigation, and timed logouts to ensure confidentiality. The following explains the technologies used to secure your information.

The Secure Socket Layer (SSL)

TeacherPH SSL

SSL is an industry standard protocol used for communication between your Web browser and our Web servers. It provides authentication, data integrity and encryption.

Your browser may give you a message indicating you are entering a secure website. You may also see a green lock outlining the secure page. And if you usually see a broken key or open lock in the lower left corner of your screen, you’ll notice it change to a full key or closed lock.

Secured transactions are also indicated in location or address bar of your browser by the prefix https:// rather than http:// (https stands for hyper-text transfer protocol, secured).

Authentication

Authentication confirms that you are who you say you are, and verifies that you are communicating with a TeacherPH Web server. There are two parts to the authentication process, digital certificates as well as your identification and password.

The Secure Socket Layer uses digital certificates to confirm with your Web browser that you are accessing our Web server. Our Web site uses Cloudflare digital certificates, the strongest security available for websites. Digital certificates let you verify whom you are dealing with. Our certificate allows you to confirm that you are dealing with TeacherPH and that we own the website to which you are connected.

You can check the digital certificate for our website to establish that you have a secure connection by simply clicking on the padlock seal whenever you see it appear on our site.

Some of our services require you to have a personal digital ID certificate installed on your computer. We provide specific instructions for installing this personal digital ID only when it is required by our systems. For most of the services we provide on our website, this personal digital ID is not required.

Your user ID, or group and ID numbers as well as your password are confirmed to ensure your information is provided only to the correct identification and corresponding password. Incorrect identification and/or password will result in failure to access your information.

Data integrity

The Secure Socket Layer ensures that any alteration to the contents of your message, either intentional or by accident, will be identified and handled in an appropriate manner.

Encryption

The Secure Socket Layer encrypts or “scrambles” the content we transmit into an unreadable format using complex mathematical equations, called algorithms before it travels across the Internet to your Web browser. This makes it difficult for unauthorized interceptors to understand. Encryption codes the information ensuring that only your Web browser and our Web server can decode it effectively.

Your Web browser will display a closed padlock icon when data is encrypted. An open lock or no image is displayed during an unencrypted session.

Firewall

Our systems are protected by firewalls that are a combination of the latest in computer hardware and software to separate the Internet from TeacherPH Web servers and computer systems. The purpose of a firewall is to prevent unauthorized access and malicious attacks to customer information and business systems. By using a firewall, TeacherPH is ensuring your information is always protected.

TeacherPH Web Application Firewall

A web application firewall (WAF) is an application firewall for HTTP applications. It applies a set of rules to an HTTP conversation. Generally, these rules cover common attacks such as cross-site scripting (XSS) and SQL injection.

TeacherPH OWASP

The Open Web Application Security Project is an online community which creates freely-available articles, methodologies, documentation, tools, and technologies in the field of web application security.

Two Factor Authentication, is an extra layer of security that requires not only a password and username but also something that the user has on them.

DDoS mitigation is a set of techniques or tools for resisting or mitigating the impact of distributed denial-of-service (DDoS) attacks on networks attached to the Internet by protecting the target and relay networks. DDoS attacks are a constant threat to businesses and organizations by threatening service performance or to shut down a website entirely, even for a short time.

Timed Sign outs

Our Web services are time sensitive in that an online session will be terminated after a certain period of inactivity. This is a security measure to help prevent unauthorized access to our systems if an individual leaves their computer unattended for an extended period of time while connected to our website.

Backups

We regularly back up all service request information collected online to insure against loss. It is promptly deleted from our system once your service request is completed;

We follow generally accepted standards to protect the personal information submitted to us, both during transmission and once we receive it. No method of transmission over the Internet, or method of electronic storage, is 100% secure, however. Therefore, we cannot guarantee its absolute security.

If you have any additional questions or concerns related to this security practices, please email us at [email protected]

This Security Statement was last updated on December 15, 2016.

Read: How to Keep Your Personal Information Secure

Comments are closed.