This Security & Two-Factor Authentication Policy explains the security practices and account protection expectations for PirateSERP users.

1. Account Security Responsibilities

• Use strong, unique passwords and do not share credentials.
• Enable two-factor authentication (2FA) where available and recommended.
• Promptly notify us of suspected unauthorized access.

2. Two-Factor Authentication (2FA)

We may support or enforce two-factor authentication using common authenticator workflows (including solutions such as WP 2FA, where applicable within the authentication stack). If 2FA is enabled or required for your account:

• You are responsible for maintaining access to your 2FA method.
• Loss of access to 2FA devices may require identity verification for recovery.

3. Platform Security Measures

We implement reasonable security controls appropriate to the Service, which may include:

• Role-based access controls and least-privilege administration
• Secure hosting and network protections
• Audit logging and monitoring for suspicious activity
• Security updates and maintenance

4. Security Incidents

If we confirm a personal data breach affecting customer data for which we act as a processor, we will notify the customer without undue delay and share reasonably available incident details. See also our Data Processing Addendum for processor obligations.

5. No Guarantee

No system can be completely secure. We do not guarantee that unauthorized access will never occur.