Customers need to be aware of the dangers posed by caching data in both browser and server caches. Care must be taken to minimize the risk of citizens being able to access each others' data from these caches. This can occur when the citizen uses the browser back button or history to retrieve data previously entered by other users, or when application PDF files are cached locally on the computer that was used to make the application.
HTTP Servers like Apache provide the ability to set cache-control response headers to not store a cache. We recommend this approach be taken with UA deployments to prevent access to data using the browser back button or history.