At American Spirit Technology Group, we are 100% committed to the security of our platform. All our websites our securely hosted on our servers and are monitor around the clock. To ensure your website's security, we do not disseminate technical details of our security and system.
HTTPS & SSL Certification
When connecting to the "HTTPS://" version of a site, it is trying to established a secured connection. (The 'S' in HTTPS stands for Secure). In order to have a secured connection, the domain (URL) needs a SSL (Secure Sockets Layer). An SSL provides a encrypted connection between the visitor and the website.
At this time, we do not offer SSLs for custom domains. If you navigate to your website using HTTPS from your custom domain, you will get a security warning due to not having an SSL (example below).
MINDBODY Integration Security
All MINDBODY transactions are secured behind the SSL offered on your “.liveeditaurora.com” URL. You will notice that this URL automatically displays when users are checking out their products. All MINDBODY client information is accessed and transmitted through our secured connection to MINDBODY's API. Our MINDBODY integration is also PCI compliant. MINDBODY client information, such as credit card numbers, are not stored directly on your website or within our hosting environment.
- Recently, major browser have started to flag any pages that capture information (i.e. login, checkout, or form pages) as insecure if not on an HTTPS connection regardless of any other security measures in placed. While your website is still fully secured within our system, our team is currently working on a new service to offer SSLs for your custom domain. We will be announcing more news on this soon!
- Third party SSLs bought from a DNS provider, such as GoDaddy, are not compatible with our system.