We are considering using Campaign Monitor to send email newsletters which will contain sensitive information. I am aware that the web version email newsletters is available to everybody out there on the internet - even if it does have a URL which is very hard to guess. Is this reason enough not to use Campaign Monitor? I have also had our security expert raise concerns about search engines "happening across" this content.
I would very much appreciate it if you could supply me with your position on use of Campaign Monitor for internal newsletters, answers to the URL and search engine question (and other typically identified potential vulnerabilities, and the things to watch out for when using your application in this way). Hopefully you have this information already and I've just failed to find it on your site - or in the forum?
Plenty of people do use Campaign Monitor for internal newsletters - if you don't have a web version link in your email, and never publish a link to the web version, it is pretty unlikely someone will come across it. Google certainly can't discover a page that is not linked to.
Having said that, if it is highly sensitive and you'd prefer not to take any risk at all, that's certainly understandable.
Thanks Mathew. The way I see it - the only way take no risk at all is not to send the content at all - by any method. People can always forward, print, or just verbally share the content of an email with people outside the company - there will always be risk.
Thanks for the suggestion - nice simple solution. In my mind your suggested approach substantially reduces increased risk that Campaign Monitor introduces over a solution which keeps all information within the corporate network. Hopefully this will be enough to satisfy our security people.
Thanks Rob, we're glad to help.