PHPJunkyard support forum

Script URL:
Version of script:
Hosting company:
URL of phpinfo.php:
URL of session_test.php:
What terms did you try when SEARCHING for a solution:

Write your message below:
Deeply Sorry i dont have the information above at hand however i am using (in test) HESK 2.8.4 i seem to have got it working the way i want however. i asked my GDPR guy that im looking to implement this and one question he asked is is the data encrypted? to which i said i have no clue.
i explained it saying i ask for name number email address (and normal helpdesk ticket information). the client/end user can only see there tickets by using their email address and a ticket number. first thing he asked is if he was able to take the database would he see everything in clear text or is it encrypted. so ideally if our helpdesk users has super strong passwords but they managed to hack something and got the data will it be useless to them.

if you need more info i can ask but i wouldn't know what to ask. i just want to make sure im secure as possible and not being stupid and just push it out for all my clients to use.

The database is actively used by Hesk so it is not encrypted. Theoretically, you could store everything in MySQL in AES encryption, but you'd still need to have the key on hand (in the settings) to access and store the data so that it wouldn't be of much use.

What you can do is install Hesk on a self-encrypting drive (wouldn't help if someone gained access to MySQL and dumped data) and make sure any backups you make are encrypted, but the "hot" (actively used) database needs to remain accessible. I'm not aware of any similar software that would encrypt in MySQL on-the-fly.