Security Overview
PageX applies industry-standard security practices across all systems.
Encryption
- **Data in transit**: TLS 1.3 for all API and dashboard communications
- **Data at rest**: AES-256 encryption for stored data
- **API keys**: Hashed and salted, never stored in plain text
Infrastructure
- Hosted on AWS with SOC 2 Type II certified infrastructure
- Isolated environments for production, staging, and development
- Regular security patching and dependency updates
Access Control
- Role-based access control (RBAC) for all internal systems
- Multi-factor authentication required for all PageX employees
- Principle of least privilege: staff access only what their role requires
Vulnerability Management
- Regular automated vulnerability scanning
- Annual third-party penetration testing
- Responsible disclosure program — report vulnerabilities to security@pagex.to
Incident Response
In the event of a security incident, we will notify affected customers within 72 hours in accordance with GDPR requirements.
Was this article helpful?