5 Ways to Secure Your Shopify Store
Cloud services like Shopify provide a great way to set up a store without the burden of maintaining and updating software. However, store owners need to ensure they maintain a high level of security for their store. At Rewind, we encounter lots of people who are surprised to learn that when they delete items in Shopify, they’re gone forever. When even tech CEOs have their online accounts hacked, you need to make sure that your store is as secure as possible. Here are 5 things that you can do to ensure you don’t experience a data disaster.
- Use a Strong Password
Using a strong password is the best defence against unauthorized access to your store. However, remembering large, random passwords is nearly impossible. Most people resort to using a common password that’s easy to guess. Luckily, there are many applications that can help you manage passwords. The companies who build these applications have a central focus on security and encryption. The main benefit of a password manager is that it allows you to store all of your secure information in one, easily accessible place.
However, there are also many intrinsic benefits as well: through using a password manager, you can increase the difficulty of your passwords using special characters and numbers as you no longer are required to memorize them. Also, most password managers integrate with your browser and use an auto-fill feature that will save you valuable time. One of my favourites is 1Password, but LastPass is another good option as well.
2. Two Factor Authentication
The first way to secure your Shopify store is through the use of two factor authentication, a security feature that is essentially an extra “layer” of security to prevent against hackers. The first authentication factor is your basic username and password, the second layer is something that is personal to the store owner that only they would know. Typically this is a random code that is generated by your cell phone, that only you have access to. When you add this second factor of authentication, stores have much higher protection against hackers. You can set up two-factor authentication on your Shopify store by following these instructions.
3. Limit Apps That Can Write To Your Store
You should always be careful when allowing applications access to your store. At Rewind we’ve seen a number of cases where a bug is introduced into these apps, and it’s accidentally deleted an entire product catalog.
Not only should you be very careful to read reviews and do research on applications when installing them to your store, but always be aware of the permissions you grant to these applications.
4. Set Access Limits
Although we all take the time and effort to hire and train employees, teaching them how to work the online store platform, mistakes do happen. By adding limitations within your software, you can be careful only certain employees can access certain information. In this way, you prevent employees from improperly using a function they don’t know, wreaking havoc on your store.
In Shopify, you can set permissions in your store admin area, under Settings > Account > Staff Members. Add a staff member, and then click on their name to limit their permissions. Shopify provides a good overview of how to set up and configure staff accounts in their help centre. It’s best to follow a security principle of “least privilege” meaning you start with giving them access to nothing, and slowly increase the access to only what they need to do their job.
5. Back Up Your Content
Many store owners believe that since their store is in the Cloud, they are safe if anything is deleted. Unfortunately, this is not true. When an item is deleted from Shopify, it’s gone forever. And although Shopify can import backed up data like CSV files for products, when a product is deleted, its images are deleted as well, rendering the CSV file images useless.
In order to protect against this, you can backup your store manually, or install an app that will do that for you automatically. Rewind is one example of this, it backs up your store’s important data every night, and in real time for the most important data. When something goes wrong, Rewind allows you to easily login to the secure Rewind Vault and select which items you want to restore.
By following those five steps, you can ensure all of the time and effort you’ve put into your Shopify store is safe and protected.
- Bold Life & PR