Welcome to e-KSF now!

Home

Hot Topics

e-KSF Security Accreditation

e-KSF has always had the highest internal security processes, and we have experts in our team regularly reviewing and ensuring that we keep your data secure. For added peace of mind and reassurance, we are also nearing the end of a “penetration testing” process with Qinetiq one of the world’s leading defence technology and security companies. Qinetiq have investigated our systems and processes, and provided us with a report of suggestions for improvements, which we have now implemented. They are now running a re-testing activity to check that we have put in place everything in their report, including the “nice to have” which means that e-KSF security is leading edge amongst applications which store employee data.

We do all we can to make sure that all aspects of the system under our control are secure. However, IT systems are only as secure as their weakest link. Here’s some things you can do to make sure that weakest link isn’t you!

Data Security

Make sure that each user of e-KSF has their own login – don’t share usernames! You should be able to share workload with the existing e-KSF processes like “delegate access”, “assign rights to edit post outlines”

Keep passwords secure – please don’t share your password with anyone, and if you think someone may have access to your password then change it to something secure and unique using the “edit personal details” button once you’ve logged in to e-KSF. In line with best practice, e-KSF now requires all passwords to be at least 8 characters long, with a mix of numbers and letters. Unlike some systems e-KSF doesn’t force you to change your passwords at regular intervals because we recognise that many people will only use e-KSF very occasionally. It is however still good practice to change your password every few months, though.

Don’t put any patient-sensitive data on e-KSF – it may be useful to refer to patient care when entering evidence for KSF reviews, but make sure that it’s not possible for anyone to identify the individual patient (either by name, or by reference to their unique situation).