+1 (929) 214-1037
images

A Guide to Securing Your ActiveTrail Account

At ActiveTrail we take anything and everything having to do with information security on the Internet, very seriously. As such, we seek to give you and your clients the peace of mind that your (and their) information kept within our system is secured to the fullest extent possible by supplying you with all of the available means to protect your ActiveTrail account.

There are a number of actions that you can take to protect your ActiveTrail account:

1. Change your password every three months

Start off with the most basic and most necessary actions. Just as your bank requires that you change your password at least once every 90 days, you should independently adopt the same policy for your ActiveTrail account.

Similarly, we suggest using the most secure and proven methods for generating passwords:

  • Use letters, numbers and special characters.
  • Choose passwords that don’t include any sequence of numbers or characters related to your name or the identity of your business. Not your military ID number, nor your personal ID number nor birth dates. Make sure to use random numbers to the extent possible and make sure to preserve this randomness every time you change your password.
  • Use an online password generator that allows the system to choose a random password for you that is harder to guess or crack.
  • Use password management software such as LastPass or Keepersecurity, that allow you to secure all of your passwords under a single virtual roof.

Keep in mind! Employing strong passwords reduces the overall risk of a security breach.

Click here to renew your password in the ActiveTrail system

2. Verification codes sent via SMS to mobile devices – 2 Step Verification

Adjust your account settings ahead of time, such that each time you login to the AT system an SMS message with a one-time code will be delivered to a mobile number defined by you in the system. Access to the ActiveTrail system and its use will be granted only after entering the code.

This way, if someone tries to hack into your account, to gain access to the data stored in your user profile, that person will need both your logon credentials and your mobile device.

To access this specific feature, please contact our support team, who will be happy to make the necessary updates to your user profile.

Our support team is available Sun-Fri between the hours 09:00-18:00 by phone at

+1 (929) 214-1037, via our website or via our in-app chat.

3. Restrict the usage permissions of sub-accounts

These limitations are relevant only if there are multiple sub-accounts associated with your user profile. It’s reasonable to assume that not all the members of your team with access to your ActiveTrail user profile require access to all of the features available within the system. It follows, that in order to reduce exposure, you can restrict certain sub-accounts and provide different and relevant permissions to different users.

In practice, this feature relies on hierarchical compartmentalization, where the parent account has access to all of the system’s features and the other sender accounts have access to a limited number of features, as might be necessary. For instance, a designer may be given access to landing pages, but be restricted from accessing the reports and settings areas.

This form allows a reduction in exposure to sensitive information, such as recipients’ personal data.

To place such restrictions, begin by accessing your account’s settings:

guide_account_security_activetrail_one

On the “Settings” screen, select the “Permissions” tab:

guide_account_security_activetrail_two

To allow or block access, choose a user and add / remove restrictions as needed:

guide_account_security_activetrail_three

Important! Contacts within the system who manage these sub-accounts will not be permitted to carry out such actions (adding/removing restrictions), rather only the person with primary access to the profile within ActiveTrail will be allowed to perform these actions.

4. IP based access restrictions

Using the advanced RESTful API interface, you can connect ActiveTrail to external systems and substantially improve your work processes. With that said, we are aware of the fact that it is mostly programmers that make use of the RESTful API interface, and not the owners of the ActiveTrail account, thus requiring that access to the account will be provided to the in-house (or external) programmers.

It is possible to define an exclusive IP address within the AT system (probably that of the programmer who will work with the interface) for this purpose. Connecting to the API will be possible from this IP address alone and connection attempts from any other IP address will be denied.

Keep in mind! To safeguard an IP address based account, please contact our support team.

There are numerous ways in which you can protect your user profile in the ActiveTrail system, although not all of them are suitable for all businesses. We, therefore, recommend that you evaluate the various available options and, in parallel, evaluate your own organization’s information security practices.

Back To Learning Center
Still need help! Our support team is available
Mon- Friday 9:00-18:00 +1 (929) 214-1037, chat and email support@activetrail.net