Security & Trust

Your security and privacy are our top priorities. Learn about the measures we take to protect your data, transactions, and digital assets.

Data Protection

πŸ”’ Encryption

All data is encrypted in transit using TLS 1.3 and at rest using AES-256 encryption.

πŸ›‘οΈ Secure Infrastructure

Our infrastructure is hosted on enterprise-grade cloud platforms with 99.9% uptime SLA.

πŸ” Access Controls

Multi-factor authentication and role-based access controls protect your account.

πŸ“Š Regular Audits

Regular security audits and penetration testing ensure our defenses stay strong.

Payment Security

PCI DSS Compliance

All payment processing is handled through PCI DSS Level 1 compliant providers. We never store your credit card information on our servers.

  • β€’ Stripe for secure payment processing
  • β€’ Tokenized payment methods
  • β€’ Real-time fraud detection
  • β€’ Secure 3D authentication

Account Security

Two-Factor Authentication (2FA)

Enable 2FA to add an extra layer of security to your account using authenticator apps or SMS.

Strong Password Requirements

We enforce strong password policies and encourage the use of unique, complex passwords.

Session Management

Automatic session timeouts and the ability to manage active sessions across devices.

Investment Security

Shareholder Protection

Our fractional ownership model includes built-in protections for all shareholders with transparent voting mechanisms and secure asset allocation.

  • β€’ Limited to 3 shares per pack for exclusivity
  • β€’ Democratic voting on all card decisions
  • β€’ Real-time market pricing via JustTCG API
  • β€’ Transparent pack opening process
  • β€’ Automatic profit distribution
  • β€’ Age verification (18+) required

Privacy Protection

Data Minimization

We only collect the data necessary to provide our services and never sell your personal information.

  • β€’ GDPR and CCPA compliant
  • β€’ Right to data portability
  • β€’ Right to deletion
  • β€’ Transparent data practices

Incident Response

24/7 Monitoring

Our security team monitors systems around the clock for any suspicious activity.

Rapid Response

Incident response team ready to address security issues within minutes of detection.

Transparent Communication

We commit to transparent communication about any security incidents that may affect users.

Security Best Practices for Users

Protect Your Account

  • β€’ Use a unique, strong password
  • β€’ Enable two-factor authentication
  • β€’ Keep your contact information updated
  • β€’ Never share your login credentials
  • β€’ Log out from shared devices
  • β€’ Report suspicious activity immediately

Responsible Disclosure

We welcome security researchers to help us keep TCGShares secure. If you discover a security vulnerability, please report it responsibly.

Bug Bounty Program

We recognize and reward security researchers who help us improve our security posture.

security@tcgshares.com

Contact Security Team

Report Security Issues

If you believe you've discovered a security vulnerability or have security concerns, please contact our security team immediately.

Email: security@tcgshares.com

Response Time: Within 24 hours

PGP Key: Available upon request