wGrow - Team Notes

Introduction

In light of policy changes, property developers are now expected to create their own Executive Condominium (EC) Sales and Report Systems, rather than rely on the Housing and Development Board (HDB) provided system. This shift presents several challenges, including secure data integration with the HDB system, real-time report generation, and high-performance requirements during property launch days. In this article, we discuss the design of a secure and high-performance EC Sales and Report System to address these challenges.

Note: only public avaible information, and the technical knowledge shared. No data or confidential workflow revealed.

The Design Process

1. Securing the Server Environment: To protect sensitive data, we implemented a highly secure server environment with a strict hardening process. This process involved disabling unnecessary services, implementing strong authentication mechanisms, and applying regular security patches and updates.

2. SFTP Integration: We used Reflection for Secure IT SFTP server to facilitate secure file transfers between the HDB system and our EC Sales and Report System. This approach ensured that sensitive buyer and project data were securely transmitted.

3. Data Encryption: To safeguard the downloaded data, we created private and public keys for data decryption. All received data were encrypted using SHA-256 at the database level, ensuring the security of sensitive information.

4. Real-time Reports and Document Generation: We designed the system to read document templates in Word XML format and generate Option to Purchase (OTP) documents, side letters, and real-time reports in Word or PDF files. These files were password-protected for added security.

5. Deployment Options: To accommodate different user needs, we provided both cloud and on-premise deployment options for the EC Sales and Report System. This flexibility allowed property developers to choose the most suitable deployment strategy based on their requirements.

6. Data Purging and Archiving: To further protect personal data, the system was designed to automatically purge and archive personal information once the sales process was complete. This measure ensured compliance with data protection regulations and reduced the risk of data breaches.

Conclusion

In response to the HDB's policy change, we designed a secure and high-performance EC Sales and Report System to meet the specific needs of property developers. By focusing on security measures such as server hardening, secure file transfers, and data encryption, we ensured the protection of sensitive data throughout the system. Furthermore, by offering real-time report generation, flexible deployment options, and automatic data purging and archiving, we provided property developers with a robust and user-friendly solution to manage their EC sales and reporting needs.

The implementation of this EC Sales and Report System highlights the importance of secure and efficient software design in the property development industry. It serves as a blueprint for other organizations facing similar challenges, demonstrating the value of prioritizing security and performance in the development process.