Version 1.0
Last Updated: March 7, 2026

Data Protection

Security is built into the core of AxeTip. We use industry-standard encryption (AES-256) for data at rest and TLS for data in transit.

Security Headers

We implement strict security headers to prevent common attack vectors:

  • HSTS (Strict-Transport-Security): Ensures your browser only communicates with AxeTip over HTTPS.
  • Content-Security-Policy (CSP): Restricts the sources of content (scripts, styles, fonts) to trusted domains, mitigating XSS risks.
  • X-Frame-Options: Prevents clickjacking by restricting our site from being embedded in iframes.
  • Referrer-Policy: Protects your privacy by limiting information shared with external sites.

Infrastructure & CDN

Our platform leverages Cloudflare’s global edge network, providing:

  • DDoS Protection: Mitigating large-scale layer 3 and layer 7 attacks.
  • Bot Management: Protecting against automated scraping and malicious bots.
  • DNSSEC: Ensuring the integrity of our DNS records to prevent spoofing.

Compliance & Process

AxeTip follows rigorous change control procedures (PCI-DSS Requirement 6.4) to ensure the integrity of our software:

  • Version Control: Every change is tracked via immutable Git commits.
  • Automated Builds: Site generation is handled by isolated build pipelines.
  • No Dynamic Backend: By eliminating server-side processing, we minimize the risk of data exposure.

Responsible Disclosure

We welcome reports from the security community. If you believe you’ve found a vulnerability, please contact us at [email protected]. We appreciate your help in keeping AxeTip secure.