We take the security of your information seriously.
Here at my-estateplans.com, we are very serious about your security. We realize that you are trusting us with essential information and documents you own. Your information is encrypted and protected with industry-leading technology and security.
Here at my-estateplans.com, our top priority is the security of your information. We take extensive precautions to ensure that your data is accessible only to the trusted Deputies to whom you have granted access. We DO NOT SELL YOUR INFORMATION TO ANYONE! Other competitors offer similar services but sell your information to financial advisors for referral fees. Our business model earns a living off, providing our members with extraordinary value, our mission.
Security is not just about protecting your data. It is also about protecting access to your account. With two-factor authentication enabled, whenever you sign in to your account from a new computer, device, or browser, we will send a unique code to your phone that you must input as part of your login. This way, we will know it is you.
Securing Your Data at Rest
All your data is stored using AES-256 encryption within our systems with a uniquely derived key for each user as recommended by NIST Special Publication 800-132. We encrypt every single personally identifiable field in the database, including your name and email address. For searching and indexing, we hash a small number of fields using HMAC. We apply the same encryption technique to all files you upload.
As with all systems such as ours, the security of your information depends on you. Choose a strong password (we enforce that as best we can) and never share it with anyone. We have secure system for sharing information with others via our deputy function.
Securing Your Data in Transit
All communications between you and our organization are encrypted via SSL using 2048-bit certificates, and we require SSL on all communications. We support perfect forward secrecy so that even if someone eavesdrops on your communication, they will still not decrypt the data if our key is compromised.
Operational Procedures to Keep the Site Secure
We follow best practices to keep your data secure. We regularly audit our environments and code for security issues and apply patches expeditiously. We use commercial services that periodically check our site (including McAfee Secure), and we retain our security experts to probe and verify our site’s security.
Administrative Access to your Information
Our strict internal procedures prevent any Estate Planning Interactive employee or administrator from gaining access to your account beyond a limited set of data necessary to help grant you access to your account (e.g., triggering confirmation emails) and restricting access to your account in urgent circumstances (e.g., limiting or removing a deputy’s entrance). Our administrators can never see the plan information that you fill out or any documents that you upload. We log and regularly audit all accesses to your account, whether by you, an administrator, or your Estate Delegate™.
Operational procedures strictly protect access to user data, and user data is never shared without permission.
We filter and sanitize all user input to prevent code injection and XSS attacks.
Our code is written and reviewed to ensure proper security practices are followed.
Two Factor Authentication
Security is not just about protecting your data. It is also about protecting access to your account. By enabling Two Factor Authentication, whenever you sign in to your your account from a new computer, device, or browser, we will send a unique code to your phone that you must input as part of your login.
You must be logged in to post a comment.