Worldwide losses to online scams & cybercrime:$聽-Protect yourself & your family now
Clicxsafe
Sign inGet Protected

Security & Trust

Last updated: May 15, 2026 路 Version 2026-05-15

Clicxsafe is a security platform, so we hold ourselves to a higher bar than most. This page summarises the measures we take to protect your account and your data. It is meant to be informative, it does not replace formal contractual commitments in our Terms and Privacy Policy.

Encryption

  • All traffic is encrypted in transit using TLS 1.3.
  • Data is encrypted at rest by our cloud provider.
  • Passwords are stored only as salted hashes, never in plaintext.

Privacy-safe scanning

Our breach checker, link scanner, scam analyser and QR safety tools process the minimum data needed to return a result. We do not sell scan history and we do not use it to train third-party AI models.

Role-based admin access

  • Admin access is segmented into roles (support, finance, super-admin) with the least-privilege principle.
  • Most personal data is masked by default in admin tools.
  • Only super-admins can unmask specific records, and every action is recorded.

Audit logging

Sensitive administrative actions, viewing sensitive fields, changing roles, processing refunds, modifying subscriptions, are recorded in immutable audit logs that admins themselves cannot delete.

Database security

Customer data is protected by row-level security policies enforced at the database. Application bugs cannot bypass these rules, even a compromised API key cannot read another user's data.

Payments

Payments are processed by PCI-DSS compliant providers. Card numbers never touch our servers; we only store tokenised references and the last four digits.

Fraud prevention

We monitor for unusual sign-in patterns, payment anomalies and abuse of our security tools, and block or rate-limit accordingly. This is a legitimate-interest processing activity covered by our Privacy Policy.

Responsible disclosure

Security researchers are welcome to report vulnerabilities to privacy@clicxsafe.com. We commit to acknowledging reports within 3 business days and we will not pursue legal action against good-faith research that does not violate applicable law.