tax and finance electronic graphic new york state banner
 
Web Site Security

ABOUT SSL CERTIFICATES
The New York State Department of Taxation and Finance (hereinafter “DTF”) takes taxpayer information confidentiality and computer security very seriously.   DTF’s Web site uses industry standard security measures.  We also employ the use of digital certificates on our Web site (from VeriSign) to provide a secure, encrypted connection between capable Web browsers and our Web servers.  This secure, encrypted connection is required by our servers whenever and wherever you are asked to enter information that may be considered confidential.

DTF also takes this opportunity to remind you that security of computerized information is a shared responsibility. The security precautions implemented by DTF may be of little value to you if your computer is being compromised by unchecked viruses, spyware, or other malware which may provide a means for unauthorized third parties to gain access to your information. DTF encourages and reminds you to be active participants in ensuring the security of your information by installing firewall protection and using and updating anti-virus protection and anti-spyware protection as well as downloading security updates and patches onto your computer. For more information concerning how you can protect your computerized information, visit the Web sites of the New York State Office of Cyber Security & Critical Infrastructure Coordination (http://www.cscic.state.ny.us) and the Office of the New York State Attorney General (http://www.oag.state.ny.us), containing links to useful information concerning safeguarding your computer.

DTF recognizes that it is important for individuals and businesses to be confident that their privacy is protected when they visit DTF’s Web site. Please see our Privacy Policy for detailed information concerning DTF’s Web site privacy practices.

We encourage you to read below for more information on the security measures in place to protect the confidentiality of your online transactions.

Security measures employed by the Department of Taxation and Finance


DTF employs strict security measures and Web security best practices to protect taxpayer information.

  • DTF's Web site uses Secure Sockets Layer (SSL), the industry standard security protocol, to securely communicate with browsers like Internet Explorer. SSL ensures your private information is encrypted between your internet browser and DTF computer systems.
     
  • DTF uses digital certificates. We register with a trusted third-party authority (currently VeriSign) to receive a digital certificate that you can use to verify the identity of our Web site. You can verify that you are at a trusted DTF Web site by clicking on the VeriSign logo that appears on the secured areas of our Web site.
     
  • DTF uses firewalls to block potentially destructive information from entering our computer systems and prevent unauthorized access. Firewall systems are hardware devices and software systems that provide a barrier against hackers and viruses. Firewalls are deployed throughout DTF's network to allow only authorized network traffic.
     
  • DTF uses intrusion detection systems that continuously monitor our computer network to detect unauthorized attempts to breach our computer systems or the misuse of DTF computer systems.
     
  • DTF regularly patches and monitors its computer systems to ensure that our systems are protected against vulnerabilities that, unfortunately, are so prevalent on the Internet today. Patching and monitoring computer systems provides another layer of protection by closing the loopholes that internet hackers may try to exploit.
DTF also uses security measures to protect the confidentiality of taxpayer information stored on our computer systems. DTF follows industry standard best practices for protecting and securing its information technology assets including, but not limited to, authentication, monitoring, auditing, and encryption. Security procedures have been integrated into the design, implementation, and day-to-day operations of DTF as part of our continuing commitment to security of information.
DTF is committed to protecting your information from unauthorized access, use, or disclosure. Access to confidential information is limited to those personnel who need it to perform their official duties and responsibilities. Employees and contractors who have access to DTF information are regularly trained to follow appropriate procedures when accessing confidential taxpayer information. DTF personnel access your information only within the scope of their assigned duties and responsibilities.

Disclaimer

The information provided herein should not be construed as giving business, legal, or other advice, or warranting as fail proof, the security of information provided via this Web site.

Privacy Policy

Site Index | Electronic Services | Publications and Bulletins | Web Survey
Accessibility | Disclaimer | Privacy | Security

Last Modified:  May 7, 2007