Security & traffic quality

1) Account security

• Passwords are stored as hashes (never plain text).
• Use strong passwords and avoid reusing them across services.
• Failed-login limits and brute-force prevention (depending on config).
• Secure sessions/cookies to reduce account takeover risks.

2) Click/analytics data protection

• We collect only what is necessary to operate tracking and optimize campaigns.
• Internal access follows a least-privilege principle.
• Regular backups and recovery procedures.
• Optional IP masking / reduced IP granularity if supported.

3) Infrastructure security

• Monitoring, anomaly alerts, and regular security updates.
• Restricted admin access and environment separation where applicable.
• Protection against scanning, spam, and overload attempts.

4) Traffic quality & abuse prevention

• Detect automated traffic (bot/scan) to reduce campaign impact.
• Rate limiting to curb spam clicks and anomalies.
• Analyze device/country/referrer to spot low-quality sources.
• Use UTM + reconcile with GA4/Pixel for conversion truth.

5) Retention & data lifecycle

Click/log retention may vary by plan and system settings. We aim to retain only what’s necessary for service delivery and security.

6) Incident response

• Receive reports and verify issues.
• Contain impact and mitigate quickly.
• Fix and perform post-incident review.
• Notify users where appropriate (if needed).

7) What you can do to stay safe

• Use strong passwords and enable 2FA if available.
• Do not share accounts or private tokens.
• Point domains/DNS following the Docs.
• Monitor dashboards to detect anomalies early.