Security Best Practices
Recommended practices for keeping your information safe
EPIC employs cutting-edge technology to ensure the highest level of Internet security currently available. However, your cooperation is crucial in maintaining the security of your company and consumer information. To support you in this effort, we have outlined the following security guidelines:
User Account Sharing Is Prohibited
It is the responsibility of your primary account administrator to assign a distinct Login ID to every user within your company. The account assigned to you includes specific privileges tailored to your job responsibilities. It is imperative that you do not share your Login ID and password with others.
Secure Your Account Access Credentials
Avoid writing your Login ID or password on sticky notes or other areas within the view of others around you. Doing so could enable unauthorized individuals to access your Login ID and password, potentially leading to unauthorized access to your company and consumer information. Any misuse of your account will be traced back to you and may result in suspension of your account access.
PLEASE NOTE: Your password is specific to your individual user account and should not be shared with anyone – this includes EPIC and others within your company, even if others are also account users or account administrators. The information you can access may contain confidential information your company or consumers and should not be accessed or viewed by individuals outside your company.
Remove Employee Account Access When Terminated
When an employee leaves the company, account administrators must immediately delete the profile of the terminated or separated employee from the EPIC Product. This action prevents the individual from gaining unauthorized access to sensitive information.
Updating The Password On Your Account
We mandate that all users update their passwords every 90 days. However, should you suspect that someone has gained access to your password, please change it immediately by selecting 'Change Password' under your user account in the EPIC Product.
Consumer Information Must Be Kept Confidential
Never email consumer information to anyone, including yourself. Non-Public Personal Information (NPI) includes sensitive details such as consumer names, addresses, social security numbers, account numbers and other personal information not reasonably known or accessible by the public.
Beware Of Fraudulent Websites
Fraudulent websites are created to deceive users into submitting their Login ID and password. Once entered on such a site, your credentials could be used to gain access to your account for fraudulent purposes. Always verify that you are on withepic.com before entering your Login ID and password.
Always Log Out Of Your Account After Use
Always select 'Log Out' under your account after using the EPIC Product to help prevent unauthorized account access. Keep in mind that any misuse of your account will be traced back to you and may result in suspension of your account access.
Report Unauthorized Access
If you suspect that someone other than you has gain accessed to your account, immediately send an email to security@withepic.com and attempt to access your account to reset your password.