Trust & Security

Security

SX2 is built for regulated gaming environments where payment security is non-negotiable. Here is how we protect the platform, operator data, and patron transactions.

How We Protect the Platform

Six layers, built into the platform from day one.

Encryption in Transit and at Rest

All data transmitted between patrons, pinpads, cage workstations, and our servers is encrypted using TLS 1.2 or higher. Data stored on platform infrastructure is encrypted at rest using AES-256.

Role-Based Access Controls

Access to the platform is governed by role-based permissions. Cage staff, supervisors, and system administrators each operate within defined access boundaries. Privileged access is logged and auditable.

Canadian Cloud Infrastructure

SX2 runs on Google Cloud Platform with data residency maintained within Canadian borders. No patron or operator data is processed or stored outside of Canada.

Continuous Monitoring

Platform availability and anomalous activity are monitored around the clock. Automated alerting and on-call response procedures are in place to detect and respond to incidents quickly.

Network Security

Platform infrastructure is protected by firewall rules, network segmentation, and DDoS mitigation controls. Production environments are isolated from development and test environments.

Regulatory Alignment

SX2 operates in alignment with PIPEDA and applicable provincial privacy legislation. Data processing agreements with licensed gaming operators define responsibilities for patron data under their jurisdiction.

Infrastructure

Built and hosted in Canada.

Canadian gaming operators operate under strict provincial and federal regulatory requirements. SX2's infrastructure is purpose-built to keep all transaction and operator data within Canadian jurisdiction — not as a feature, but as a baseline requirement.

99.99%
Platform uptime SLA
100%
Canadian data residency
TLS 1.2+
Minimum transport encryption
AES-256
Data-at-rest encryption standard

Responsible Disclosure

Found a vulnerability?

If you believe you have identified a security issue affecting SX2 platform software or infrastructure, please report it to us directly. We take all reports seriously, investigate promptly, and will work to address confirmed issues in a timely manner.

Security Contact
security@sx2paytech.com

We will acknowledge receipt within two business days and provide a status update within ten business days.