(7)What are the controls required for E-Commerce?
Answer: Following are some of the important controls for E-Commerce:
(1) Education &
Awareness:
- Every participant needs to be educated towards risk associated with e-commerce transactions.
- Organizations need to put structured policy and guidelines for implementing control.
(2) Communication of
organizational policies to its customers:
- It is advisable to communicate relevant policy and procedure to customers.
- Following processes to be communicated through company website:
(i)
Privacy Policies.
(ii)
Information security practices
and controls.
(iii)
Shipping and billing policies
(iv)
Refund policies
(3) Compliance with Regulations:
- Mandatory compliance with regulation is very important.
- In India Reserve Bank of India, has been releasing standards from time to time.
(4) Protection from
Intrusion:
(i)
Viruses: To establish control against
virus.
(ii)
Hackers: Use software packages to
establish controls against hackers.
(iii) Passwords: To establish strong password policies.
(iv) Regular software updates: Website should always be up to date with the newest versions of
security software. If you fail to do this, you leave your website vulnerable to
attack.
(v)
Sensitive data: Use of encryption
software for sensitive data.