Protecting your ChMeetings data means ensuring that proper security measures are being taken and that you have control over your data. This guide takes you through what you can do to ensure your data is protected, and what ChMeetings is doing for the same purpose.
Here Is What You Can Do To Protect Your Data
Cover Security Basics
We recommend that you inform church servants about basic security measures such as keeping passwords private or ensuring that their devices are secure (by installing an antivirus or avoiding suspicious websites or links; for example). Any devices belonging to your church should ideally be regularly supervised by a cybersecurity specialist, or at least have security software installed.
Ensure All User Accounts Are Secure
Everyone who has an account should have a strong password, and ideally, activate two-factor authentication. You can enable both of these in Settings > Account Settings > Security.
Manage User Roles
ChMeetings lets you choose who has access to what information. You can do this by managing user roles and permissions
Perform Your Own Data Backups
You can perform your own backups of ChMeetings data, by running exports within a section of interest. You can export the following data categories:
- People list and profile information,
- Groups list and members lists,
- Follow-ups,
- Events: Access each event > Click Reports, and export the report,
- Contributions: All Contributions, Batches, Funds (Fund Lists and Charts), Pledge Campaigns, Contacts, Organizations, Online Giving Transactions List, Envelopes),
- Accounting: Accounts Charts, Account Transactions, All Accounting Reports,
- Users and Roles list.
You will find an export option within all of these sections:
-
either as an Export button:
-
or as a down arrow button:
Here Is What Chmeetings Is Doing To Protect Your Data
Two-Factor Authentication
You can enable two-factor authentication for all your user accounts and can make it mandatory for servants with additional permissions beyond a member account. When enabled, this feature requires users to enter an additional authentication code, besides their password. Both the password and the code must be entered correctly to gain access. These codes are received on the user’s email address or generated within a dedicated authentication app and are only valid for a limited time.
Encrypted Connections and Daily Backup
All services, including communication between client and server, are encrypted using SSL. Our platform is being backed up daily, under SSL encryption. We can also perform manual backups when required.
Reliable, cutting-edge cloud hosting
ChMeetings is hosted on Microsoft’s Azure Cloud Services, in the United States. This ensures that our users benefit from the highest security standards, powered by one of the largest providers on the market.
GDPR Compliance Measures
Our services are GDPR compliant, to provide enhanced privacy, including for users in the European Union. Learn more about our Privacy Policy.
Changelogs
We audit and log all data changes within our users’ databases, including the IP address that has made the change. This allows us to efficiently mitigate potential malicious use and other security threats.
Secure Payments
We only store strictly necessary payment information – including for payments made via our online giving features (e.g.: The last four digits of credit card numbers.). We do not store full credit card information or any other sensitive payment data. This information is being processed by our integrated payment gateways – PayPal and Stripe.