Protecting a client's personal information is a legal requirement in Ireland, as outlined by the Data Protection acts, and this is something that has to be taken very seriously when building a website that uses any personal information.
There are many ways a website's data can hijacked by an attacker, and though there is no sure-fire way to be 100% protected against these attacks there are systems that we can put in place to make sure that your data is secure and that your company is fulfilling it's legal requirements.
I build systems for clients who need to consider these things.
I can implement database encryption, which acts as a fall-back in the unlikely event that someone gains access to your database. The attacker would be unable to read or decrypt any personal information in that database thanks to modern encryption algorithms which are almost impossible to crack.
I can set up SSL, a technology which ensures that any data passed between a website and a visitor cannot be viewed by any third parties, and it also runs a method of encryption. You can see SSL working on any large websites, such as Google, by looking for the padlock symbol and the letters 'https', as opposed to the usual 'http'.
My custom-built systems also track failed login attempts and we can block users if some suspicious activity is observed.
Amazon EC2 is the hosting platform I recommend, and if you go with it then you can be assured that your website's files are well protected due to Amazon's cutting edge server technologies such as secure file transfer protocol (SFTP).
Talk to me today if you want to discuss data protection. I generally work with clients in Dublin but you can take advantage of my services from anywhere in the world via email and Skype.