March 2019 - version 6.3.0
We changed the way we check for whether the user’s browsers has cookies enabled. Cookies are required to be able to log in.
November 2018 - version 6.2.2
Fix for an intermittent problem with the password strength meter always showing the entered password was weak.
September 2018 - version 6.2.1
A minor update to help with testing subject entered forms.
July 2018 - version 6.2.0
The location information associated with your IP address has been updated to show a country flag 🇬🇧 and the name of your internet service provider (ISP). For those of you who work at large organisations the location shown is often related to the ISP rather than you.
Mobile numbers and security codes are now redacted when an administrator views the audit log.
June 2018 - version 6.1.0
A timezone setting has been added to user accounts so you can see times in the Access interface (such as times of your recent log ins) in your own timezone.
Some people were getting the test and live environments mixed up. A warning is now shown on the log in page for test systems to hopefully reduce confusion.
Some tweaks were made to the security code text messages for compatibility with North American mobile networks.
March 2018 - version 6.0.0
This update is all about security, making it easier for you to keep your account secure and recover from that common modern affliction – forgotten passwords.
You can now recover your own password using the Forgot your password? link on the log in page, provided you have added a back-up email or mobile phone number to your account to receive security codes. If you haven’t done this you can still ask an administrator to reset it for you.
We’ve added a help page on ways you can keep your account secure. Check it out for some hopefully helpful advice.
Security guidance has finally caught up with common sense and heavy-weight bodies such as NIST in the US and the UK Government now advise against periodic enforced password changes. Why? Because making passwords expire means people tend to forget their new passwords, pick simple variations on their previous password, and are more likely to write them down on a sticky note.
Unfortunately some standards such as 21 CFR Part 11 contain requirements to enforce regular password changes, and so we have made this a trial level setting. We’ll be asking customers whether they need to enforce regular password changes when we set up new trials. Customers can also ask us to turn off enforced changes for existing trials.
We’ve added a recent log ins section to the My account page which shows where and when you logged in from. If you think something suspicious is going on, this is the first place to check. We also show you the last time you logged in when you log in.
We now send you emails when things change concerning your account including:
If you see any of these emails when you weren’t expecting them, you should channel your inner Sherlock and investigate.