Company News • 18.11.2019

Seven password best practices for retailers

Authentication, encryption, administration

No one likes to use passwords, but they are critical to securing access to systems with valuable business data. Retailers, like any other business, should require passwords as part of their security policies to protect POS systems, backroom applications, customer databases, and any other business system.

Whether employees work at the POS, the warehouse, the finance department or on the road connecting to the network through VPN, everyone should follow the password policy to minimize the chance of a cyber-attack or accidental data leak.

Supplier
Logo: APG Cash Drawer

APG Cash Drawer

4 The Drove
BN9 0LA Newhaven
UK
Coloreful sticky notes with passwords on a screen
Source: designer491

The following are seven password best practices every retailer should implement:

1. Require strong passwords or passphrases

Simple passwords are easy to crack, which is why they should include upper and lowercase letters, numbers and symbols. But such combinations are easy to forget, so consider requiring passphrases that employees are more likely to remember. A nonsensical word combination such as grasstiremeet will stick to the user’s mind while being hard to crack.

2. Adopt two-factor authentication

Requiring a second authentication method is always a good idea, especially for access to critical systems. With two-factor policies, users must verify their identities through a code they receive by text or security token. New options are also becoming available, such as biometrics such as thumbprints, facial recognition, and retina scans. As these methods improve, they are likely to become a routine part of authentication procedures.

3. Apply password encryption

A password encryption tool adds a layer of protection by making passwords virtually impossible to crack. Even if a cybercriminal gets a hold of a password while in transit over the network to, say, access a website or cloud resource, the password data would be useless without a decryption key.

4. Limit user privileges

One of the common mistakes businesses make is to allow too many users to access sensitive information. Employees should have access only to the systems they need for their jobs. For instance, no one but cashiers and their managers should have access to the POS application. The same goes for finance, HR and any other specialized business function. The more you limit user privileges, the less likely you are to suffer a security breach.

Login box on a screen
Source: SpiffyJ

5. Use a password manager

Keeping track of multiple passwords is hard enough for users, but when you’re the administrator in charge of password management, it’s even tougher. The use of password management tools helps ease the burden. Password managers provide a secure repository for all passwords and passphrases by encrypting the data. They’re available for users and for administrators who must keep a centralized record of all passwords.

6. Deactivate accounts no longer in use 

A key component of any password policy is to make sure accounts of employees who leave the company are immediately closed. That way, former employees cannot access company systems.

7. Publish the password policy 

Simply having a policy won’t get you far. It should be disseminated to all employees, either as part of a comprehensive security policy or as a standalone. It should outline what types of passwords to use and which not to use, and how frequently employees must change them. It also should include common-sense rules such as a prohibition against sharing or reusing passwords.

Enforcing strong password policies is crucial because stolen and weak passwords are a common cause of security breaches. While requiring passwords can be a drag for users, the reality is they’re unavoidable. And if you successfully make the case for why passwords are so critical, users are more likely to embrace them.

related articles:

popular articles:

Thumbnail-Photo: Tips: Optimal shopping experience for  Christmas...
22.11.2023   #online trading #artificial intelligence

Tips: Optimal shopping experience for Christmas

How to prepare for the shopping days as an Amazon retailer

The promotional days at the start of the Christmas...

Thumbnail-Photo: ISE 2024 - the future of retail
23.10.2023   #online trading #Tech in Retail

ISE 2024 - the future of retail

ISE will take place in Barcelona from 30 January to 2 February 2024

Since it began in 2004, Integrated Systems Europe (ISE) - the world's premier exhibition for professional audio visual (pro AV) and systems integration - has grown in size, strength and influence to become an industry-defining event. Every year, ...

Thumbnail-Photo: 5 tips for successful TikTok marketing for your online store...
06.09.2023   #online trading #marketing

5 tips for successful TikTok marketing for your online store

How to gain loyal fans for your brand

TikTok is the Wild West of social media: Everything is moving at lightning speed and you only have a blink of an eye to captivate users. If you spend a lot of time on TikTok, you'll know right away...

Thumbnail-Photo: Black Friday and Cyber Monday: Minimize mistakes, maximize success...
11.10.2023   #e-commerce #customer satisfaction

Black Friday and Cyber Monday: Minimize mistakes, maximize success

Mistakes you can avoid on promotion days like Black Friday and Cyber Monday

The promotion days on November 24 and 27 raise the sales hopes of many retailers. Despite the huge potential, these events can also be a challenge. Competition is fierce, customers are critical and expect exceptional deals. Mistakes in preparation ...

Thumbnail-Photo: Scary and clever - marketing for Halloween
20.09.2023   #brick and mortar retail #online marketing

Scary and clever - marketing for Halloween

How do you make the most of 31 October for your business?

Small means, big effect: On Halloween, you can get in touch with your customers in a playful and not too serious way....

Thumbnail-Photo: Social Commerce: Community sells?
04.10.2023   #online trading #sustainability

Social Commerce: Community sells?

Why the community approach is replacing fast delivery among customer demands and what that means for you.

For a long time it was said that fast or even "same day delivery is the key". For Fabian Mischler, this is no longer the only key to satisfied customers. In an interview, the CEO of the social commerce platform ooblee told us why community ...

Thumbnail-Photo: Christmas decorations: set the scene for your store!...
09.11.2023   #customer experience #shop decoration

Christmas decorations: set the scene for your store!

From the floor to the shelves and lights to the shop window - here's how to get your store ready for Christmas!

The weeks leading up to Christmas Eve are considered to be the busiest of the year....

Thumbnail-Photo: The quiet hour – A contribution to inclusion in retail?...
31.10.2023   #customer satisfaction #marketing

The "quiet hour" – A contribution to inclusion in retail?

Finding calm in a busy world: supermarkets make their mark

The world of commerce is constantly looking for new ways to attract and retain customers...