In order to keep your data safe we recommend that:
|1.||A commercial SSL certificate is installed to provide HTTPS encryption.|
If a commercial SSL certificate is not installed, then all communications with the website could easily be intercepted, including the login usernames and passwords.
|2.||The uploaded documents are stored on an encrypted drive.|
Documents and thumbnails need to be stored encrypted. They can be configured to be on any drive including the default C: drive, but the designated drive should be encrypted to meet EU GDPR regulations, for example using BitLocker encryption.
|3.||The Skyline databases is moved to your own SQL server.|
This should be a dedicated server with fail-over protection and backup strategies in place. The databases can be left on the Skyline server but they should be backed up by the customer.
|4.||The Skyline databases are accessed using an account that you have full control over.|
You can choose to keep the existing Database Authentication (but change the default password at least) or switch to Windows authentication using a domain account that you control.