The state of Oklahoma and OK.gov take your Internet security very seriously. Our technology and policies are designed to make your online transactions safe, private, and secure. Rigorous policies and procedures are utilized to safeguard your personal information, such as social security numbers, banking information, and personal data.
The following security measures have been taken to ensure the safety of Oklahomans:
Cybertrust Certified - OK.gov has achieved Cybertrust's Enterprise Certification from Cybertrust, the world’s leading information security specialist. OK.gov has maintained this certification since June 11, 2007. View our report of certification.
Payment Card Industry Data Security Standards (PCI DSS) Compliant - Adherence to performance measurements outlined in the PCI DSS annual self evaluation, as well as submission to regular scans from Security Metrics to search for network vulnerabilities.
Sarbanes-Oxley Compliant - Adhere to secure change control procedures.
Secure Sensitive Information Submissions - All sensitive information submitted during online transactions are sent via encrypted network protocols.
Secure Internal Networks - All data transferred between databases is done via secure network protocols to ensure that only authorized users can access the network and no one can intercept data.
Data Storage Policies - Unless necessary, OK.gov does not permanently store financial information so it cannot be retrieved or compromised.
Secure Policies and Procedures - Password and network activity audits are performed quarterly.
Physical Location Security - All physical locations where hardware and software are located are physically secured and only accessible by individuals with proper authorization.