Security

• All data encrypted in transit with TLS 1.3
• Data at rest encrypted with AES-256
• Database backups encrypted and stored securely
• API keys and secrets stored in encrypted vaults

• Hosted on enterprise-grade cloud infrastructure
• Regular penetration testing by third-party security firms
• Automated vulnerability scanning on every deployment
• Web Application Firewall (WAF) protection
• DDoS mitigation

• Multi-factor authentication for all staff
• Role-based access control (RBAC)
• Least-privilege principle enforced
• All access logged and audited
• Regular access reviews

• GDPR compliant data processing
• SOC 2 Type II certification in progress
• ISO 27001 aligned security controls
• CCPA compliant for California residents

Report a Vulnerability

If you discover a security vulnerability, please report it responsibly to our security team. We appreciate your help in keeping Clickzolo secure.