The top three traps consumers fall into are not buying at reputable sites, failure to enquire about the e-tailer's online privacy policy and not checking the site has a secure connection, according to Mark Pullen, business development manager, RSA Security.
The most important thing to look for before revealing credit card or personal details online is a security icon, such as a padlock or unbroken key, which is usually found at the bottom right hand corner or the Web page. This represents a secure site and is indicative that the e-tailer is -more likely to have thought through the requirements of security," Pullen said. A padlock at the bottom right hand side of the screen is always a good start, Pullen explained as this represents that -data in transit" between the user and the Web server is being protected.
Consumers should also ensure that any of their personal data that is being stored in an online database, such as passwords, usernames and PIN numbers, is also adequately protected. Such information is called -data at rest" and this is where checking up on site privacy policies comes into play.
Unfortunately there's no way of knowing if an organisation has protected data at rest, short of reading privacy policies and asking the company, according to Pullen.
Companies that protect data at rest are more likely to make privacy policies readily available online, will openly discuss their security arrangements and will provide contact details and company information online, Pullen agreed.
Pullen also encourages online shoppers this Christmas to apply the same principals as when buying something in a bricks and mortar store.
-There are always going to be unscrupulous operators out there whether in the physical world of the online world," he said. However, when shopping at a reputable site, online consumers will be 99.9 percent safe, he said.
Pullen said that Internet shoppers should also be creative when setting up passwords online, should enquire if credit card details will be kept on file by the e-tailer to be reused for future transactions and should avoid revealing unnecessary personal information such as bank account details. Furthermore, customers should always keep a record of purchase details and confirmation receipts.
However, most organisations invest significant time and resources into securing their sites, providing maximum security for online users, Pullen stressed. -A million good transactions happen in Australia every day," he said. -We probably don't publicise the good stuff as much as we do the bad."
For full coverage of the 2001 holiday season,
check out ZDNet Australia's special report:
Silly season settles in online
I know. I've already been scammed this Christmas from a man named Dave Borneman. A company called Dragons Den Games in Bowling Green Kentucky. They are pure evil. Just make sure who you deal with on the Internet is someone you know and trust. Also, this scammed was made possible by the lack of control PayPal has over any transaction. Their best effort left me trying to chase down someone who basically stole a significant amount from me. Just a warning.