Security Statement

Last updated: July 30, 2014

Please read these Site Terms (the “Terms” and/or “Agreement”) carefully before using this website.
Paragraph headings used in this section are for reference only and shall not be used or relied upon in the interpretation of this text.

Processthebasics.com and its software/technology/etc. (“PTB” and/or “technology”) utilizes some of the most advanced technology for Internet security available today. When you access our site using industry standard Secure Socket Layer (SSL) technology, your information is protected using both server authentication and data encryption, ensuring that your data is safe, secure, and available only to registered Users in your organization. Your data will be completely inaccessible to your competitors and any others besides PTB, its developers, potentially its designers, and those outside your business.

PTB provides each User in your organization with a unique username and password that must be entered each time a User logs in. PTB issues a session “cookie” only to record encrypted authentication information for the duration of a specific session. The session “cookie” does not include either the username or password of the user. PTB does not use “cookies” to store other confidential user and session information, but instead implements more advanced security methods based on dynamic data and encoded session IDs.

In addition, PTB and its technology is hosted in a secure server environment that uses a firewall and other advanced technology to prevent interference or access from outside intruders.

Security researchers seeking information on how to report security issues to PTB should review our Vulnerability Reporting Policy.

Vulnerability Reporting Policy

The PTB security team and related security affiliates (hereafter referred to as PTB security team) acknowledges the valuable role that independent security researchers play in Internet security. Keeping our customers’ data secure is our number-one priority, and we encourage responsible reporting of any vulnerabilities that may be found in our site or application. PTB is committed to working with the security community to verify and respond to any potential vulnerabilities that are reported to us. Additionally, PTB pledges not to initiate legal action against security researchers for penetrating or attempting to penetrate our systems as long as they contact us immediately at info@processthebasics.com or 888.995.0246 and adhere to the conditions below.

Testing for Security Vulnerabilities

Conduct all vulnerability testing against Trial or Developer Edition organizations (instances) of our online services to minimize the risk to our customers’ data.

Reporting a Potential Security Vulnerability

Privately share details of the suspected vulnerability with PTB by sending an email to info@processthebasics.com and provide full details of the suspected vulnerability so the PTB security team may validate and reproduce the issue.

PTB does not permit the following types of security research:

Causing, or attempting to cause, a Denial of Service (DoS) condition; accessing, or attempting to access, data or information that does not belong to you; destroying or corrupting, or attempting to destroy or corrupt, data or information that does not belong to you

The PTB Security Team Commitment

To all security researchers who follow this PTB Vulnerability Reporting Policy, the PTB security team commits to the following:

To respond in a timely manner, acknowledging receipt of your report (please contact us via email and/or 888.995.0246);
to provide an estimated time-frame for addressing the vulnerability; to notify the reporting individual when the vulnerability has been fixed; no compensation: PTB does not compensate people for reporting a security vulnerability, and any requests for such compensation will be considered a violation of the conditions above. In such an event, PTB reserves all of its legal rights.