• Home
  • Tour
  • Pricing
    • Pricing Levels
    • Jump Start Program
  • Support
    • Download the manual
    • Mobile App
    • Video Tutorials
    • Online Help
      • Advanced Searching
      • Adding Tasks
      • Field types
      • Inviting New Users
      • Filters – Creating and Grouping
      • Metrics
      • Moving a Task
      • Secure Fields for your Workflow
      • Tags
      • Task details and history
      • Workflows – Steps and Fields
      • Manage Notifications
    • FAQ – Billing & Support
    • FAQ – Secure Fields
    • FAQ – General
    • FAQ – Affiliate Program
  • Blog
  • About Us
    • Affiliate Program
    • Media
    • Contact
    • Non-Profit and Community Groups
  • Use Cases
    • Managing Remote Workers
    • Reduce Compliance Costs
    • Audit and Quality Management
    • GTD For Teams
    • Workflow Sharing
    • To-do Workflow
    • Help Desk Workflow
    • Phone Message Workflow
    • Safety Management System Workflow
    • Software Development and Bug Tracking Workflow
    • Asset Tracking Workflow
    • Expenses Workflow
    • Trade or Services Workflow
    • Sales Process Workflow
  • Login

FAQ – Secure Fields

Questions & Answers

Home Support FAQ – Secure Fields
How does the Secure Field function work?
How do I set up a Secure Field for my Workflow?
Can I secure my whole task workflow, or only one field?
What happens if I lose my key that I use to secure my field?
How do I share my secure key so other team members can also see the Secure Field?
Where should I store my secure key?
Can I reset my secure key?
Can I use the same key to secure other fields?
No-one in my team knows the secure key, what do I do next?
Can teamfocus see any data that I have in a secure field?
What happens if a Government agency requests my data, will they be able to see my data?
What are some good uses of the Secure Field feature, how can it help me?
How secure is the teamfocus Secure Field, what encryption do you use?
If a team member leaves should I generate and apply new keys?
How do I generate and apply a new key for a secure field?
How do I remove the encryption from a Secure Field?
Does teamfocus keep a copy of my secure keys in case I loose them?
The team member who manages the secure keys is on holiday and I need to see the data, what can I do?
Why not make all fields encrypted?
What’s a key id?
How does the Secure Field function work?

Information you enter into the Secure Field is encrypted in your computer before being sent to teamfocus. When the data comes back, it’s decoded by your computer to display again.
In order to do the encrypting, you need a key, which your computer creates and stores locally.

To allow others to see these Secure tasks (or for you to see the Secure tasks on other computers e.g. your home computer) you need to copy that key to the other computer.

How do I set up a Secure Field for my Workflow?

Go to our How To section on Secure Fields to get a complete step by step guides to setting up Secure Fields.

Can I secure my whole task workflow, or only one field?

The Secure Field feature only encodes one field at a time (you can make as many of these fields as you need).

What happens if I lose my key that I use to secure my field?

If you lose your key, you will not be able to update the field or see any old data. If you have sent the key to another team member, they can send it back to you.
teamfocus also allows you to export your keys (or you can simply cut and paste them into a trusted system such as 1Password).

If you don’t have any copies of the key at all, you will not be able to access any of your old data. You can create a new secure field Via the “Change Workflow” function in the Settings menu and re-enter your data as required.
teamfocus stores your keys locally in your browser. If you clear your browser data it may delete your keys, so it’s very important to have a backup somewhere safe.

How do I share my secure key so other team members can also see the Secure Field?

Your key looks like a bunch of letters in a long word (less than 100 letters and numbers). If you copy this from your “Key Manager” under the Settings menu, you can sent it to another team member and they will be able to access the data as well.
You can also export all your keys and share it via a USB Thumb Drive or even using a secure file sharing system such as BitTorrent Sync.

Where should I store my secure key?

Your keys are automatically stored in your browser when they are created, but they should also be backed up in an application like 1Password.
As teamfocus is a team tool for managing tasks, having the keys available to other team members is important so they can view and update the Secure Fields. Sending the keys to another team member (who you would like to be able to access the Secure data) also means that there’s another copy of the secure key you can access if required.

Can I reset my secure key?

You can create new keys in teamfocus by going to the “Key Manager” function under the Settings menu. If you then go to the “Change Workflow” function, you can make the field use the new key. (You can also create a new key in the Workflow Editor for convenience).
As history is stored on tasks, all existing data will still be stored on the task using the old key. Only changes going forward will use the new key.

teamfocus cannot update your old tasks as the keys are never sent to teamfocus servers.

Can I use the same key to secure other fields?

Yes, you can use a single key to secure multiple fields, across multiple workflows and even multiple teams if required.

No-one in my team knows the secure key, what do I do next?

If you don’t have any copies on any computers, and don’t have a backup copy of your keys anywhere, you will be unable to read your data.
When you create your Secure Field, teamfocus strongly suggests you store your keys to a USB thumb drive or trusted application like 1Password.

Can teamfocus see any data that I have in a secure field?

No, we have no method of decoding your data. The main intention of Secure Fields is that if teamfocus is required to hand over your data (or a third party somehow gains access to our database) your data will still be safe. Without your keys it’s essentially useless data and your keys never get sent to teamfocus.

What happens if a Government agency requests my data, will they be able to see my data?

Without your keys, the data stored in teamfocus is unusable.

If you were to send your keys to team members via email, then the government agency would also need that email to be able to decrypt your data.
teamfocus suggests you store your keys with a system that you trust such as 1Password. You can also store keys on multiple USB thumb drives and lock them in a safe.
Using the teamfocus Key Manager, you can easily export all stored keys so there’s just a single small file to backup.

What are some good uses of the Secure Field feature, how can it help me?

You could store some information in it just to ‘make sure’ someone else can’t see the data. For example, if you share a set of teamfocus Lists with a customer and use field level permissions to control what they see, encrypting the data would mean that if you forgot and changed permissions later, they still would not be able to see the data. This is sort of a ‘belt and braces’ approach to security.

The encryption used is AES256 which is an extremely strong and robust encryption. It will be enough for health records, credit card details etc, although this would be up to your own business policies to determine if it’s sufficient.

How secure is the teamfocus Secure Field, what encryption do you use?

teamfocus uses AES256 encryption. The 256 means that there’s a 1 in 2^256 chance of someone guessing the key.
These are very large numbers. That’s about 1 with 77 zeroes after it.

If say a supercomputer that could check a billion billion (1018) keys per second (if such a device could ever be made) it would in theory, require about 3 (with 52 zeroes) years to exhaust the 256-bit key space.

If a team member leaves should I generate and apply new keys?

This is not required. The main purpose of the encryption is to stop teamfocus handing over your useable data to another party. If a team member leaves, teamfocus recommends that you simply un-invite them from your team, then they will no longer have access.
If you were to make a new key, it would affect only data changes going forward and you would still require the old keys to see the old data.

How do I generate and apply a new key for a secure field?

The key manager can create new keys for you (as well as let you know how many tasks currently use a key). You can also create a new key in the Workflow Editor when you setup the details of the particular field. Just choose new key and when the workflow saves, a new key will be created and stored in your key manager.

How do I remove the encryption from a Secure Field?

You can’t remove encryption once it’s setup. If you decided not use it anymore, you would have to create a new field and manually copy the data to the unencrypted field. teamfocus cannot do any of these operations for you as the teamfocus servers never see your keys and therefore cannot ever decode your data.

Does teamfocus keep a copy of my secure keys in case I loose them?

No, teamfocus will never store your keys (teamfocus do not even send them to the teamfocus servers).

The team member who manages the secure keys is on holiday and I need to see the data, what can I do?

Anyone who has access to those fields has that key, It’s just a matter of getting them to go into the “Key Manager” and send you the required key.

Why not make all fields encrypted?

The power of teamfocus is the ability to cut and slice your tasks the way you want to. Our lists allow you find just the tasks you need. Things like “My overdue tasks” or “all active tasks” are only possible when teamfocus can see some data about these tasks. “My overdue tasks” for example would need to know your due date to be able to show you the tasks you need. If this field was encrypted, teamfocus wouldn’t be able to provide the list you need.

Most teamfocus customers also like the ability to search for keywords in tasks and this would be unavailable with encrypted fields. teamfocus allows you to decide what you want to be secure and what you can store in plain text.

What’s a key id?

When teamfocus generates keys on your local computer, it also generates a “key id” which is used to simply identify which key is being used. This is sent to the teamfocus servers with your encrypted data so that when it comes back to your computer again in a task list, your computer knows which key to use.

There is no way to compute a key from a key id. The long word you see in your key management screen actually contains the encryption key and separately the key id to identify it.

Got your own Questions?

If you have not found your answer in our Video Tutorials, Online Help or FAQ please contact us.

HomeAbout UsTerms of ServicePrivacy PolicyMobile AppContact
Copyright © 2014 teamfocus. All rights reserved.