5 Must-Have CRM Security Features

Evaluating a new automotive CRM requires a long checklist, and security features are one of the most important line items you should check off. Auto dealerships are under constant threat from cyberattacks. Automotive News reports that, on an average day, 143 viruses and 84 malicious spam emails are blocked by technology on a dealership’s network.

Why does the industry have a big target on its back? Dealers hold a lot of customer data, and many run their businesses on outdated technology. According to a survey from Total Dealer Compliance, only 30% of dealers employ IT personnel who have completed computer security training or certifications. With the average dealer group having 20 vendors or more with access to internal systems, things can go wrong quickly.

Beefing up internal processes, training employees to spot phishing techniques and hiring professional IT staff are all essential to keep your data and systems safe. So is selecting a system with security in mind. That brings us back to evaluating a new CRM system.

Due diligence is a must before selecting a new provider. Look for the following features in any system:

1 Encryption

Encryption makes sure your data can’t be read even if someone outside your dealership sees it. The data is scrambled and then coded so it can only be deciphered with the right password. If you’re using any third-party marketing vendors, you’re going to have to share your data. Data in transit is vulnerable, and encryption keeps that data safe. The ability to encrypt data should be standard with any CRM, so make sure any system you’re evaluating has this feature before moving forward.

2 Authentication

Authenticating a person’s credentials with a password before revealing data is a standard process. Some CRM systems may use biometric passwords, like fingerprints or voice patterns, to make information even more secure.

3 Password Policy

We all know that person who uses “password” or “1234” to access email or their phone. It may seem silly to say, but this is a really bad idea. You don’t want a CRM that lets employees get away with lazy passwords. You need a system that knows this flaw and forces users to create passwords using a few rules, such as having more than six characters and including digits and/or symbols.

4 Data Backups

A CRM provider should be able to tell you the process to store data and ensure data safety. A best practice is to store data in several data centers. If a server in one center fails, the processing is switched to a replica server in another data center with minimal service interruptions. A provider should also maintain daily and even hourly backups for each data store and maintain these backups in different geographic regions to protect against regional disasters.

5 Vendor Access

It’s standard for a CRM provider to restrict access to only those third-party providers that you approve. However, a provider won’t kick out vendors that you no longer use. Every six months, pull a list of vendors who do and do not need access. Until you delete a vendor’s feed, that vendor may still have access to your CRM and can retrieve and sell data.

CRM security risks could threaten your dealership and leave you exposed to legal threats if negligence exists. It pays to carefully examine how a provider will protect your data and your dealership from a breach before you sign on the dotted line.