Slikk.

Security

Protecting your funds and personal data is our top priority. Here's how we secure the platform and how you can protect yourself.

How We Protect You

KYC & AML Screening

Every user is identity-verified before placing orders. All crypto addresses and transactions are screened against AML risk databases to block fraudulent activity.

Encrypted Data

All data in transit is encrypted with TLS 1.3. Sensitive data at rest is encrypted using AES-256. We never store card numbers — payments are handled by PCI-DSS compliant processors.

Non-custodial Model

We never hold your crypto. Coins go directly from our liquidity to your wallet on-chain. There is no Slikk wallet to hack — your assets stay in your control.

Secure Authentication

We use Clerk for authentication, providing industry-standard JWT sessions, device tracking, and optional multi-factor authentication (MFA).

Webhook Security

All inbound payment webhooks are verified using HMAC signatures. We validate every callback before processing to prevent spoofed payment notifications.

Rate Limiting

All API endpoints are rate-limited to protect against brute-force attacks, credential stuffing, and denial-of-service attempts.

Your Security Checklist

Use a strong, unique password for your Slikk account

Enable two-factor authentication (2FA) on your account

Never share your wallet private keys or seed phrase with anyone — including Slikk staff

Always verify you are on the correct domain before entering credentials

Use a hardware wallet for long-term storage of large amounts

Keep your email account secure — it is the key to account recovery

Beware of phishing emails claiming to be from Slikk — we will never ask for your password

Do not access your account on public or shared computers

Check your order history regularly for any unauthorized activity

Report any suspicious activity to support@slikk.io immediately

Beware of Phishing

Slikk will never ask for your password, private keys, or seed phrase via email, chat, or phone. If you receive a suspicious message claiming to be from Slikk, do not click any links and report it to security@slikk.io immediately. Always check that you are on slikk.io before logging in.