At DashThis, we take your data security very seriously. Many of our clients fear that their competitive information could fall into the wrong hands, and we totally understand that. Here’s how we deal with the security of your account and information at DashThis:
DashThis uses heavily encrypted URLs to provide a high level of security. For example, in this dashboard URL:
The “MlZvD_iCYEqEYd-EhkKclA” part is what identifies the dashboard. This is built from a 128 bit unique ID, or if you are a techie, a Globally Unique Identifier (GUID).
How unique is this? Well, the generation algorithm is unique enough that if 1,000,000,000 GUIDs per second were generated for one year, the probability of a duplicate would be only 50%. Or if every human on Earth generated 600,000,000 GUIDs, there would only be a 50% probability of a duplicate. It’s THAT unique.
In short, don’t worry about the probability of someone guessing your dashboard’s URL.
Why do we use these encrypted URLs? Only to simplify the reporting process: there is no need to provide your clients with yet another set of credentials they could lose or forget.
But what if a dashboard URL has been compromised? For example, you accidentally broadcast your dashboard URL on Twitter! Or simply because an employee left and you want to make sure (s)he doesn’t have access to the reports anymore? You can simply and quickly re-generate the link for any dashboard in the dashboard menu:
Extra security by adding a PIN to any dashboard
“But my client is still not comfortable having a report without a password. What should I do?”
We understand that. That’s why you can add a PIN (personal identification number), which is basically an access code required to gain access to the report. From a security point of view, this doesn’t add much security as this PIN will most likely be sent by email along with the encrypted report URL. To be safe, you should at least send both separately. However, from a client point of view, this will reassure them and that’s the big benefit we are looking for here.
Restrict IP addresses
On top of that, you can also restrict access to all your dashboards by IP addresses. You can learn more about the Security Settings in your account in this article.