Security practices

At Flexa, we work hard to earn your trust that the payments you make on the Flexa platform will be safe, reliable, private, and secure. Therefore, we take the security of our systems, software, and internal processes very seriously.

To ensure that our systems and software are well-tested and to monitor for new vulnerabilities, Flexa works with respected external researchers to perform regular penetration tests and red team assessments of our systems and infrastructure, and periodically solicits professional, third-party audits of the code we produce.

Audits

Trail of Bits — September 2019

Praetorian — May 2020

ConsenSys Diligence — June 2020

Trail of Bits — August 2020

Praetorian — January 2022

Praetorian — September 2023

Report a vulnerability

Flexa deeply appreciates the input of hackers acting in good faith to improve the security of the Flexa platform and associated systems.

If you believe you have identified a vulnerability within the Flexa platform or its related collateralization smart contracts, please submit your disclosure right away to security@flexa.co, and include clear steps for reproducing the vulnerability.

In return, Flexa will acknowledge all vulnerability disclosures promptly and responsibly, and will reward responsible disclosures according to the terms of our Bug Bounty Program.