Netcore email API has below-given security features,
1. No Storage of PII information on the platform
- Netcore email API platform does not stores any PII information of the email content. The only PII information stored on the panel is the recipient email id which is stored for the purpose of reporting.
2. 90 days data purging policy
- All the reports data including the email ids would be purged automatically after 90 days.
3. Masking of email ids on the panel
- The email ids which are shown on the panel are shown in a masked way so as to protect the privacy of customer data.
4. Change panel login password policy
- Netcore cpaas platform forces the users to reset their panel login password every 3 months as best practice.
5. IP binding for emails injected via SMTP
- With recent developments, you can setup list / range of ips using which ONLY the emails can be injected on to Netcorecloud Email API platform with valid authentication credentials. This helps you to safeguard your account from un-authorized access and unauthorized injection of emails.
6. Custom API keys with restricted access
- The API keys created on the panel can be mapped to specific permissions. This gives a better control on the API for our customers.
7. Secure download of detailed reports data
- Netcore email API supports an offline download of reports data from the panel as a result of which the data is shared only with registered email address over email in a CSV zipped file.
8. Binding IP's with API key
- Netcore email API supports binding of your account with static IP's of your organization. This helps in injecting emails on to your Netcore email API account only from specific static IP's which you whitelist on the panel and reject all other emails which are injected from non-whitelisted IP's.
Note: It is necessary to whitelist all required IP's and make sure about the same before you start using this feature as it might cause rejection of valid emails which can not be recovered.
9. One way Data Hashing
With Data Hashing facility on Netcore email API , you can rest assured about the safety of your data. With this feature, our customers now can decide if they want to maintain their PII information (recipient email address) on Netcore email API in a plain text or encrypted format.
We use SHA-1 to convert the email address, recipient name (and any other recipient's PII information) to a hash value and store the value instead of original data.
10. Secure 2FA with Google Authenticator and Email OTP Login.
At present, if you share your username and password with anyone in your team, they have access to your account.
But when you do that, it's difficult to know who else knows your credentials.
With the new updates, you can set up Two-factor Authentication (2FA) with either email OTP or Google Authenticator as an option.
After you set this up, you will need to use a one-time auth code provided either on email or the Google authenticator app.
Since the code is sent to your email or is available only on the application, anyone else with your login details cannot access your account.
Keep in mind that although 2FA provides a significant security boost to your accounts, experts still recommend using strong passwords and utilizing password managers when possible.