Articles in this section

See more

Data Security and Privacy

  • Updated
Follow

Snug takes data security and privacy very seriously, with best practice policies and procedures in place. Given the sensitive information and attachments provided in rental applications, to further reduce risk to your business and provide a market-leading customer experience, Snug is enhancing features for our clients, customers and rental community. Together we can keep the rental community safe online.

 

Snug has following enhancements scheduled:

Please note (timeframes may be subject to change):

  • Enhance login (Released: Feb 2022)

  • Auto Withdraw of applications (Released: April 2022)

  • Team user management & deletion (Released: April 2022)

  • Digital shredding of sensitive data and information (Planned: June 2022)

  • 2 Factor login (Planned: June 2022)

  • Activity notifications (Planned: July 2022)

 

Auto Withdraw - how it works

"Withdraw" application is currently available on the platform for Renters and Property Managers. 

Snug is turning on time based automation to save you time and reduce the open apps, data exposure in your team dashboard. 

  • All Applications older than 60 days will be Auto Withdrawn (for applications created on or after Saturday 9 April 2022 ie. Auto withdraws 8 June 2022) regardless of processing status. Applications older than 60 days will be made available to Admins for applications Marked as Leased.

  • Shortlisted applications older than 28 days are subject to Auto Withdraw (for applications received on or after Saturday 16 April 2022 are subject to Auto Withdraw 28 days later ie. 14 May 2022)

  • Applications older than 14 days in stages ‘New’ or ‘Review’ ie. less than Pre-Approved will be subject to Auto Withdraw (for applications received on or after Saturday 16 April 2022 are subject to Auto Withdraw 14 days later ie. 30 April 2022). To keep applications accessible, property managers should progress the application to either stages: ‘Approve, Offer or Accept’

  • Declined applications are accessible up to 7 days from Declined date.

mceclip0.png

 

Digital Shredding - how it works

  • Sensitive Information such as Passport numbers will be hashed and display the last five digits only eg. ####12345
  • Sensitive documents such as Identity and Income documents will be digitally shredded.  A reference to the attachments provided by the renter will be in the PDF Application Summary for consumer tribunal, dispute or insurance purposes.
  • Snug will send communications to customers at least 30 days prior to Digital Shredding commencing.

 

Common questions

Q. What is the benefit to a property manager of these changes?

A. Snug helps reduce business risk as applications will be automatically withdrawn and access to sensitive details will be removed and sensitive documents will be digitally shredded.

 

Q. How do I keep an application accessible?

A. Within 14 days, progress the application to the processing stage. For instance, the “Pre-Approve” stage will allow you to keep the application accessible.

 

Q. What happens to Sensitive Information & Documents?

A. Digital shredding will remove ID numbers from the visual display and download the application PDF. Any sensitive uploaded documents, eg. Passport image, will be removed and no longer accessible. A record of the document uploaded by the renter, file name, date and time will be recorded.

 

Q. Why is Snug doing this?

A. Data security is a key concern for renters and a risk for real estate businesses.

 

Q. What are other security best practices for property managers?

A. Here are 10 key steps to staying safe online:

  1. Regularly virus scan all hardware and software
  2. Regularly install the latest software updates
  3. Limit computer software instals to those authorised by your company's IT
  4. Change passwords regularly eg. every 3 months
  5. Immediately remove staff that have left the business from the systems
  6. Don't share passwords or logins
  7. Don’t download sensitive documents to local computers or desktop
  8. Train staff about types of scams, phishing, malicious downloads and around privacy act obligations
  9. Promote online safety to your clients and customers
  10. Be aware of the latest online safety, current scams and report suspicious activity: https://www.cyber.gov.au/

Related articles

Have more questions? Submit a Request