Danny Hile, General Manager of BizBid.com.au acknowledges there are risks associated with shopping online. Similar to someone watching over your shoulder at the bank, online risks can be managed by following a few simple guidelines. When shopping online remember to be aware of the following.
1. SSL Encryption
You should never exchange personal or financial information with a website unless the site uses a secure sockets layer (SSL) certificate. Sites that use an SSL certificate have “https://” in the address bar and should have a padlock pictured next to the address bar to show the site is secure. An SSL certificate prevents hackers from accessing personal information by providing a secure connection between the customer and the company.
2. Pay Using a Reputable Service
Always pay using a reputable service provider such as Pay Pal or Money Bookers. These sites allow for the exchange of money without giving buyers or sellers your banking information. You should also check that these sites have SSL encryption as mentioned previously, in addition to a privacy policy, which details how your information is used and stored.
3. Anti-Spyware
Spyware, as the name suggests is designed to collect information you type on the computer. The more sinister form is that which attempts to collect personal or banking information you enter into the computer. If your anti-virus program includes spyware use it, if it does not you should find out about installing anti-spyware before shopping on the Internet.
4. Website Privacy Policy
You should always read the privacy policy of a website before entering your personal details. The privacy policy will govern acceptable use of information including those who may sell your information or otherwise make it available to third parties. Small businesses are not required to have this policy but it is good practice if they do so.
5. Phishing and Other Scams
The most widespread form of fraud on the Internet is a practice known as phishing. Phishing is simply tricking people into providing financial or personal information, including passwords to the wrong people. Most reputable companies will not ask you to provide any of this information via email. If in doubt about an email or phone call, log in to the company website and contact the company about your concerns.
6. Fake Websites
Always check the address bar at the top of a page. For example the home page of BizBid.com.au should always start with “http://” or “https://” followed by “bizbid.com.au/” or www.bizbid.com.au/. Fake websites may look just like the real thing, except for the address bar at the top of the page.
7. Trust the Website
By clicking the security seal on any secure page users can see how the website owner was verified. The most basic verification is domain name only but companies can be verified with a complete physical address, company name and more. Users must make a decision whether to trust the company from which they are making a purchase, based on the confirmed information. Always make sure the seal is from a reputable company like Verisign or Starfield Technologies.
8. Save to Favourites
Some spyware programs can record keystrokes on your computer. As an additional measure it may be a good idea to add your online bank or favourite shop to “favourites” in your browser window. If a hacker does intercept a message it will be more difficult to match usernames, passwords and sites. There is also less chance of reaching a fake website as described previously.
9. Trust the Seller
Online auction sites such as BizBid.com.au and EBay often have feedback systems in place for the buyer. By checking a seller’s rating you can see if previous customers have been happy with this seller and the goods supplied.
Most auction sites also have a user verification process. Verified users earn a higher trust rating because they have confirmed their address or contact details. Check with individual auction sites to find out more about their verification process.
10. Password Choice
Most websites will advise you to choose a strong password. A strong password should consist of letters and numbers, lowercase and uppercase (capital letters) and should not be easily guessed by hackers. In addition the password should be longer and not a word in the English dictionary. Ideally you should have a different password for each site but if you cannot at least use a different password for those that are encrypted (start with a https://) and those that are easily intercepted (start with http://).
If you are still concerned about buying and selling online check with your payment provider or credit card company. Aside from safe buying tips and suggestions some of them provide protection in case of fraudulent purchases.
