Security is a feature, not an afterthought.
Independent audits, hardware MFA for every employee, and a public bug bounty. The same controls that protect a Fortune 500 — applied to your blog.
Encryption everywhere
TLS 1.3 in transit, AES-256 at rest. Per-tenant keys for backups and snapshots.
Network defence
Always-on L3-7 DDoS scrubbing (1.4 Tbps capacity), WAF rulesets updated daily, geo-fencing.
Auditing
Annual SOC 2 Type II by Schellman, ISO 27001 by BSI, quarterly pen-tests by NCC Group.
Compliance
GDPR, CCPA, UK GDPR, PIPEDA. HIPAA BAAs available on Enterprise plans.
Bug bounty
Public program with payouts up to $25,000 for critical findings. 200+ researchers active.
Staff controls
Hardware MFA mandatory, SSO with risk-based reauth, principle of least privilege, quarterly access reviews.
Found a vulnerability?
Report through HackerOne or directly to security@nexia.host. PGP key on our /.well-known/security.txt. We acknowledge within 24h, triage within 72h, and pay bounties on validation — no quibbling.