Keselamatan Data

Maklumat anda dilindungi dengan kawalan yang jelas.

LegacyReady menggabungkan pengesahan identiti, persetujuan pemilik, penyimpanan peribadi dan semakan manusia untuk mengawal perjalanan maklumat.

Kawalan Berlapis

Ciri keselamatan yang digunakan dalam sistem

Setiap lapisan mempunyai tujuan khusus untuk mengurangkan akses tanpa kebenaran dan penyalahgunaan.

Pengesahan Dua Saluran

Dua OTP berbeza dihantar melalui e-mel dan SMS. Kod mempunyai tempoh sah, had percubaan dan hanya boleh digunakan sekali.

Akses Berdasarkan Persetujuan

Hanya penerima yang direkodkan dan dipilih oleh pemilik boleh memulakan proses permohonan laporan.

Kad QR Boleh Dibatalkan

Pautan QR menggunakan tandatangan sistem dan versi token. Pemilik boleh menjana semula atau menyahaktifkan kad pada bila-bila masa.

Sesi dan Borang Dilindungi

Sesi pengguna mempunyai tempoh tamat, ID sesi diperbaharui selepas pengesahan dan borang sensitif dilindungi dengan token CSRF.

Pencegahan Maklumat Rahsia

Medan arahan menyekat kata laluan, PIN, OTP, token dan recovery phrase bagi mengurangkan penyimpanan rahsia akses.

Semakan Pentadbir

Maklumat tidak dilepaskan secara automatik. Setiap permohonan perlu disemak sebelum melalui tempoh menunggu.

Laporan PDF Berkunci

Laporan dihantar melalui e-mel, manakala kata laluan rawak dihantar secara berasingan melalui SMS kepada penerima.

Audit dan Had Permintaan

Aktiviti penting direkodkan dan permintaan berulang dikenakan had untuk mengurangkan percubaan automatik atau penyalahgunaan.

Prinsip Data Minimum

Rahsia yang tidak patut disimpan

LegacyReady merekodkan lokasi dan arahan rujukan, bukan rahsia untuk mengakses akaun.

  • Kata laluan dan PIN
  • OTP dan CVV
  • Nombor akaun atau kad penuh
  • Access token dan private key
  • Recovery phrase atau seed phrase
  • Rahsia digital pihak ketiga

Pelepasan Terkawal

Maklumat melalui beberapa pintu kawalan

  1. 1Pemilik memilih penerima
  2. 2Maklumat hubungan dipadankan
  3. 3OTP e-mel dan SMS
  4. 4Semakan pentadbir
  5. 5Tempoh menunggu
  6. 6PDF dan kata laluan melalui saluran berasingan
Perlindungan yang munasabah

Tiada sistem boleh menjamin keselamatan mutlak. Pengguna mesti memastikan maklumat hubungan sentiasa tepat, melindungi OTP dan tidak memasukkan rahsia sensitif.

Data Security

Your information is protected with clear controls.

LegacyReady combines identity verification, owner consent, private storage and human review to control how information moves through the system.

Layered Controls

Security features used by the system

Each layer has a specific purpose in reducing unauthorised access and misuse.

Dual-Channel Verification

Two different OTPs are delivered through email and SMS. Codes expire, have attempt limits and may be used only once.

Consent-Based Access

Only a recipient recorded and appointed by the owner may start a report application.

Revocable QR Card

The QR link uses a system signature and token version. The owner may regenerate or revoke the card at any time.

Protected Sessions and Forms

User sessions expire, session IDs are renewed after authentication and sensitive forms are protected by CSRF tokens.

Secret Information Prevention

Instruction fields reject passwords, PINs, OTPs, tokens and recovery phrases to reduce the storage of access secrets.

Administrator Review

Information is not released automatically. Every application must be reviewed before entering a waiting period.

Protected PDF Report

The report is delivered by email while its randomly generated password is sent separately to the recipient by SMS.

Audit and Request Limits

Important activity is recorded and repeated requests are rate-limited to reduce automated attempts and misuse.

Data Minimisation

Secrets that should not be stored

LegacyReady records locations and reference instructions, not the secrets used to access accounts.

  • Passwords and PINs
  • OTPs and CVVs
  • Complete account or card numbers
  • Access tokens and private keys
  • Recovery phrases or seed phrases
  • Third-party digital secrets

Controlled Release

Information passes through several control gates

  1. 1Owner appoints a recipient
  2. 2Contact information is matched
  3. 3Email and SMS OTPs
  4. 4Administrator review
  5. 5Waiting period
  6. 6PDF and password use separate channels
Reasonable safeguards

No system can guarantee absolute security. Users must keep contact information accurate, protect their OTPs and avoid entering sensitive secrets.