Category Archives: Blog

Social Media Data Collection & You!

Social Media Data Collection & What You Need to Know

Consumers are becoming increasingly aware of the cost in personal information that occurs by participating in online social media.    It’s a “free” relationship that we initiate and companies are now starting to understand the complexity of managing social media data that is collected.  We should all take some time to understand the following 3 lessons learned from companies that have not done a great job in protecting this data in the past.

1. Awareness is the Beginning.

It’s increasingly important for companies to fully understand how social media interactions with mass consumer bases actually work and to question how they can be more responsible stewards of their customers’ data. Much of society views all 3rd parties that receive personal information as malicious.  However, there are brands that depend on direct social media contact with consumers.  Understanding why that information is needed and how it protect it is key.  For some businesses, their direct marketing strategy is based on the data that is gathered and customers do benefit greatly from this approach.

2. Fair Exchange Increases Consumer Willingness.

For the companies that rely on direct marketing strategies, eliminating this type of data collection is not realistic and would be a detriment to their business model.  Loyalty programs are based around this type of data and as time passes,  consumers are more comfortable sharing this information.   One recent survey indicated that 87 percent of online shoppers are willing to trade personal information for better shopping experiences. The shift in customers allowing this data exchange and enjoying the benefits has allowed marketers and consumers to develop more personalized relationships.  All of this is based on in-depth access to consumer data.

However, the recent events at Facebook have thrown a wrench in the works. A subset of bad third-party actors, such as Cambridge Analytica, has created an issue that affects ANY company working with social media.   As a result, Facebook has stopped development work of thousands of third-party apps that access its users and their data. This means that hundreds of well-known brands, including the trusted vendors that help those brands manage their customer interactions, have also had to stop or slow up the improvement, support and maintenance of their social media accounts.

While this is problematic, it’s not unwarranted as we would all agree that more transparency is needed when it comes to how our personal data is used.

3. Adaptability is key.

Many companies that work with social media are well versed in the best way to handle this data and can adapt quickly to new regulations and changes.  Most major companies employ 3rd party platforms to handle their numerous social media interactions.  For these companies, changes in regulation and and protocol are much more easily managed.

However, there are major differences in legitimate 3rd party third-party vendors and the illegitimate data harvesters.  Understanding these differences and how companies manage their data will be the driving force behind how a company proceeds.  Do they choose a customized program that meets their needs specifically or a standardized platform that can be more easily adapted to changes in regulations?

In general, companies will have to provide transparency into their data collection and be prepared to have a platform in place that can quickly and easily adapt to new changes in policy & regulations.

Contact us for more information regarding compliance and what you can do to make sure you are protected.  For more information regarding this topic, you can view the source for this blog post and dive deeper into the subject matter.

 

Growing Your Business-Tips from Tony Robbins

Three Simple Tips to Growing Your Business

This recent Entrepreneur article really hit home with us and we felt the need to summarize this for our followers.

1. Decide What you Will Focus On

Focus on what works and master it!  Placing focus on the negatives of your business will cause those issues to magnify into larger issues down the road.  Start by finding one thing that works and make it better and move on to the next positive item in your business and so on.

2. Stop Lying to Yourself

Become brutally honest with yourself.  Take 30 minutes per day to relax and reflect on the current state of your life in the following business categories: staff, systems, business relationships, finances and growth.  Ask yourself these 3 questions for each category: “How are we doing in this category?,” “What does this mean?” and “Where would I like to be?”  Your answers may surprise you.

3. Choose an Ultra-Specific Action to Complete

You’ve identified what you will focus on and become honest with yourself about it. Now you’re ready to take action. By taking more action, you will gain experience. Robbins says that action leads to more business success.

If you’d like more info, read the full article or contact us if we can be of any assistance.

GDPR Support for PinnacleCart

GDPR PinnacleCart Support

BCS Engineering is fully capable of helping you with your PinnacleCart GDPR Compliance. We can implement and analyze your PinnacleCart applications to help you achieve compliance & assist you with any other issues that you might have regarding GDPR. We are offering a 4 Hour Pinnacle Support Consultation which includes a phone discussion to understand your business processes.  We will then use that information to look into your site and propose changes that we recognize & provide a time estimate to achieve those changes.  If there is time remaining in the 4 hour consult after completing the above tasks, we will use that remaining time to start implementing the changes that we identify to your PinnacleCart site.

We will base our work off of current best practices regarding GDPR & do our best at that point in time to help you achieve compliance.  However, we do want our clients to understand that these regulations are a moving target & constantly changing.  We encourage you to review all services and contracts connected to third-party companies with your legal counsel, in order to confirm GDPR compliance.

GDPR changes go into effect on 5/25/2018. Contact us for a quote to help you with your specific needs!

GDPR Support for BigCommerce

GDPR BigCommerce Support

BCS Engineering is fully capable of helping you with your BigCommerce GDPR Compliance. We can implement and analyze your BigCommerce applications to help you achieve compliance & assist you with any other issues that you might have regarding GDPR. We are offering a 4 Hour BigCommerce Support Consultation which includes a phone discussion to understand your business processes.  We will then use that information to look into your site and propose changes that we recognize & provide a time estimate to achieve those changes.  If there is time remaining in the 4 hour consult after completing the above tasks, we will use that remaining time to start implementing the changes that we identify to your BigCommerce site.

We will base our work off of current best practices regarding GDPR & do our best at that point in time to help you achieve compliance.  However, we do want our clients to understand that these regulations are a moving target & constantly changing.  We encourage you to review all services and contracts connected to third-party companies with your legal counsel, in order to confirm GDPR compliance.

GDPR changes go into effect on 5/25/2018. Contact us for a quote to help you with your specific needs!

GDPR Support for Magento

GDPR Magento Support

BCS Engineering is fully capable of helping you with your Magento GDPR Compliance. We can implement and analyze your Magento applications to help you achieve compliance & assist you with any other issues that you might have regarding GDPR. We are offering a 4 Hour Magento Support Consultation which includes a phone discussion to understand your business processes.  We will then use that information to look into your Magento site and propose changes that we recognize & provide a time estimate to achieve those changes.  If there is time remaining in the 4 hour consult after completing the above tasks, we will use that remaining time to start implementing the changes that we identify to your Magento site.

We will base our work off of current best practices regarding GDPR & do our best at that point in time to help you achieve compliance.  However, we do want our clients to understand that these regulations are a moving target & constantly changing.  We encourage you to review all services and contracts connected to third-party companies with your legal counsel, in order to confirm GDPR compliance.

GDPR changes go into effect on 5/25/2018. Contact us for a quote to help you with your specific needs!

GDPR Support for X-cart

GDPR X-Cart Support

BCS Engineering is fully capable of helping you with your X-Cart GDPR Compliance. We can implement and analyze your X-Cart applications to help you achieve compliance & assist you with any other issues that you might have regarding GDPR. We are offering a 4 Hour X-Cart Support Consultation which includes a phone discussion to understand your business processes.  We will then use that information to look into your site and propose changes that we recognize & provide a time estimate to achieve those changes.  If there is time remaining in the 4 hour consult after completing the above tasks, we will use that remaining time to start implementing the changes that we identify for your X-Cart site.

We will base our work off of current best practices regarding GDPR & do our best at that point in time to help you achieve compliance.  However, we do want our clients to understand that these regulations are a moving target & constantly changing.  We encourage you to review all services and contracts connected to third-party companies with your legal counsel, in order to confirm GDPR compliance.

GDPR changes go into effect on 5/25/2018. Contact us for a quote to help you with your specific needs!

GDPR and What You Need to Know!

What is GDPR?

GDPR (General Data Protection Regulation) introduces a set of privacy regulations, which expand the individual rights and protections of EU personal data, how it is handled, stored, etc.

Who does GDPR apply to?

GDPR applies to organizations established in the EU that process personal data.  It also applies to organizations outside of the EU that provide goods or services to individuals in the EU, or monitor the data of these in the EU. If your company touches any EU-based individual’s data, then you need to have proper protection and data management in place.  It does not matter if that individual is in the EU at the time of them using your website or services.

Do I need to be GDPR Compliant?

Every company should consult with their legal teams to know if they need to be GDPR compliant.  However, the general rules above can get you started and it’s likely that you are affected in some way.  If your company touches any EU-based individual’s data, then you need to have proper protection and data management in place.  It does not matter if that individual is in the EU at the time of them using your website or services.

When does GDPR take effect?

The new GDPR regulation goes into effect on May 25, 2018.

Does GDPR just apply to my website?

Not necessarily.  If you process EU data via any of your other business systems, they will need to comply as well.  You will need to confer with your legal counsel to be sure, as BCS Engineering cannot provide you with legal advice.  We encourage you to review all services and contracts connected to third-party companies with your legal counsel, in order to confirm GDPR compliance.

Can BCS Engineering help with GDPR?

Yes, absolutely! BCS Engineering is fully capable of helping you with your GDPR Compliance. We can implement and analyze your applications to help you achieve compliance & assist you with any other issues that you might have regarding GDPR. We are offering a 4 hour consult which includes a phone consultation to understand your business processes.  We will then use that information to look into your site and propose changes that we recognize & provide a time estimate to achieve those changes.  If there is time remaining in the 4 hour consult after completing the above tasks, we will use that remaining time to start implementing the changes that we identify.

We will base our work off of current best practices regarding GDPR & do our best at that point in time to help you achieve compliance.  However, we do want our clients to understand that these regulations are a moving target & constantly changing.  We encourage you to review all services and contracts connected to third-party companies with your legal counsel, in order to confirm GDPR compliance.

Contact us for a quote to help you with your specific needs!

Where can I find more information on GDPR?

Please refer to the European Commission’s Website.

Magento Sites Targeted by Hackers

Has your Magento Site Been Hacked?

Researchers at Flashpoint have discovered that at least 1,000 sites running Magento have been compromised by brute force attacks to scrape credit card numbers and install malware that mines cryptocurrency. The Magento sites are being compromised through brute-force attacks using common and known default Magento credentials. These attacks occur when admins fail to change the credentials upon installation of the platform. Attackers can then build simple, automated scripts loaded with known credentials to facilitate access of the panels.

Once the hacker has access, they are able to install any script that they choose.  With this attack they are inserting malicious code in the Magento core file, allowing them access to pages where payment data is processed. POST requests to the server containing sensitive data are then intercepted and redirected to the attacker. Furthermore, the compromised sites will then return a fake adobe flash file which will install malicious malware on the victim’s computer.

If you think your site has been hacked or would like assistance with your site, please contact us!  We are happy to help you secure your site. You can read more detail about these attacks in this Flashpoint Blog.

Authorize.net Eliminates $49 Setup Fee!

 

 

Say Goodbye to the $49 Setup Fee

Effective April 19, 2018 Authorize.net will be removing the $49 fee for all newly created Authorize.net Payment Gateway Accounts!  If you’re thinking of switching or need a payment processor, Authorize.net just made their deal a whole lot sweeter.  You can obtain this special pricing by using this link

We can help you with your set up or answer any questions that you might have.  Contact us today for any assistance that you might need!

We also offer modules to assist you in implementing this payment processor for your shopping cart:

Magento Authorize.net CIM Module

X-Cart Authorize.net DPM Module

We cannot stress the importance of PCI Compliance & your shopping cart enough and this is a wonderful opportunity for you to take the steps to make sure your site is as secure as possible. We’ve been helping clients secure their sites and maintain PCI compliance since 2002 and can make this transition smooth for you.  Contact us today!

New Versions of Magento Commerce & Open Source!

 

Important Magento Support Information

Magento has released new versions of Commerce and Open Source to increase product security and functionality:

– Open Source and Commerce 2.2.3
– Open Source and Commerce 2.1.12
– Open Source and Commerce 2.0.18
– Open Source 1.9.3.8
– Commerce 1.14.3.8
– SUPEE-10570 to patch earlier 1.x versions

These releases contain almost 50 security changes that help close cross-site request forgery (CSRF), unauthorized data leak, and authenticated Admin user remote code execution vulnerabilities. These releases also support API changes implemented recently by USPS. Additionally, Commerce and Open Source 2.2.3 introduce finer permissions for common cache management tasks. This enhancement enables qualified administrators to assign permissions for discrete cache management tasks such as flushing cache storage and refreshing cache types.

We strongly recommend that all merchants upgrade as soon as is reasonably possible.  Please contact us to help you with your upgrade today or with any eCommerce support questions that you may have.

More information about the security changes is available on:

2.x Security Updates <http://email2.magento.com/XsX0v1G0q000DsMTC02eGJ0>

1.x and SUPEE-10570 Security Updates <http://email2.magento.com/R00XMTeGCs0020v0GKDs2q0>

Full details are
available in the Open Source release notes:

Open Source 2.2.3 <http://email2.magento.com/P000q0sGXG0vLM0s0T3DeC2>
Open Source 2.1.12 <http://email2.magento.com/m000q420M0CseXvTGsM0GD0>
Open Source 2.0.18 <http://email2.magento.com/gN0TMqX0C20eGD0sG0005sv>
Open
Source 1.9.3.8 <http://email2.magento.com/JG2XGC0OeD0q6sT0sv000M0>

Full details are available in the Commerce release notes:

Commerce 2.2.3 <http://email2.magento.com/DGPM0070DGT00s0eXq2v0sC>
Commerce 2.1.12 <http://email2.magento.com/wGTDqMsGX0000ve800C2Q0s>
Commerce 2.0.18 <http://email2.magento.com/i9sG0qGevRX00s000TC2D0M>
Commerce 1.14.3.8 <http://email2.magento.com/tsDv2C0sGT0Xa00qGM000eS>

The staff at BCSE has a diverse skill set to make your technology visions a reality. We have experience in several eCommerce platforms and we also provide extensive hosting and customization options. Whatever you choose to do with your website, we can make it happen. Contact us for a free quote or for more information on how we can help you with all of your eCommerce Needs!