We've compiled a simple list of security practices that we recommmend to follow.
- Use strong and unique passwords for your Brinkee account and don't reuse them for other accounts. Consider using a password manager to generate and store your passwords securely.
- Enable two-factor authentication (2FA) for your Brinkee account. This adds an extra layer of security by requiring a second factor, in addition to your password.
- Keep your operating system, browser, and other software up to date with the latest security patches and updates. Although typically the responsibility of the IT person in your organization, you could use Brinkee to send them a casual reminder. These updates often include important security fixes that can help protect your entire organization against vulnerabilities.
- Don't share your Brinkee account with other users. If you company requires access for more users than the number of licenses you've currently purchased, please reach out to your account manager and we'll see what we can do to help. Dedicated user accounts are the best way to keep track of changes to data, prevent data leaks, as well as preventing unauthorized users from accessing things they're not supposed to access
- Avoid using public Wi-Fi networks when accessing sensitive information or logging into your Brinkee account. These networks are often unsecured and can be easily compromised by attackers.
- Be careful with browser extensions or plugins that read the content of every page you visit. This is not only creepy, but can potentially also be very dangerous. These browser extensions might scrape the data on the page you're visiting and pass it on to a third party. Ideally, don't allow users to install browser extension or plugins unless they've been approved by your company's security contact.
- Don't copy/paste code into your browser's Developer Tools, unless you know what you're doing. Doing so might share information related to your user session with a third party, allowing anyone to "hijack" your session. As a reminder, we've added a warning inside the platform that will remind users not to copy/paste code into Developer Tools.
- Don't open suspicious or untrusted emails, as these might be a part of a phishing scam. Don't click on links in these emails and don't open any attachments. As for emails sent by Brinkee, only trust emails sent from the email address configured in the platform.