Legal

security.

Last Updated: January 1, 2024

SSL Encrypted

All data in transit

Access Controls

Role-based permissions

No Data Selling

Zero third-party sales

At Cruxian Media LLC, we treat client data and information security as operational infrastructure — not an afterthought. The following outlines our commitments and practices for maintaining a secure environment for all clients and stakeholders.

Data Transmission Security

All data exchanged between users and our website is encrypted using TLS (Transport Layer Security). We enforce HTTPS across all pages and services. Contact form submissions and any file transfers use encrypted channels.

Access Control

Access to client accounts, ad platforms, and internal systems is governed by a strict role-based access control (RBAC) model. Only team members actively assigned to a client's account have credentials. All third-party platform access is provisioned using the principle of least privilege — we request only the minimum permissions required to deliver contracted services.

Credential Management

  • All internal accounts use strong, unique passwords managed through enterprise password vault software.
  • Multi-factor authentication (MFA) is mandatory for all internal Cruxian Media systems and any client platform access where supported.
  • Client credentials are never stored in plain text. Upon project completion, access credentials provided by clients are formally revoked and purged.

Vendor and Tool Security

All third-party tools and software vendors used in our operations are evaluated for security compliance prior to onboarding. We prefer vendors with SOC 2 compliance or equivalent certifications and documented security policies.

Responsible Disclosure

If you believe you have discovered a security vulnerability in our systems or website, we encourage responsible disclosure. Please contact us immediately at contact@cruxianmedia.com with a description of the issue. We commit to acknowledging all valid security reports within 48 business hours and working to remediate confirmed vulnerabilities promptly.

Incident Response

In the event of a confirmed security incident affecting client data, Cruxian Media will notify affected clients within 72 hours of confirmed breach, coordinate with legal counsel and relevant authorities as required by applicable law, and take immediate technical measures to contain and remediate the incident.

Contact the Security Team

Cruxian Media LLC
104 1/2 Maxwell Street, Starkville, MS 39759
Security inquiries: contact@cruxianmedia.com