Enterprise-grade security with every Nex site
Your website security is fully managed by our experts—from threat prevention to real-time detection and rapid response—so you can run your business with peace of mind.
Secure from the core
We thoroughly incorporate security into our platform, giving you protection from the get-go and a safe foundation for your sites.
Secure Software Development Lifecycle
At every step of the development process, we use security best practices—like design and code reviews, threat modeling and penetration tests—to ensure a safe platform.
Safe Data Encryption
Our data in transit encryption uses HTTPS, TLS 1.2+ and automatic SSL, while data at rest uses AES-256- the strongest encryption standard commercially available
Secure Payments & Anti-Fraud
All Nex sites are compliant with the highest Payment Card Industry Data Standards, supported by anti-fraud protection, to safeguard payment info and protect transactions.
Third-Party Risk Management
Third-party services help provide an optimal experience, but can pose vulnerabilities. Nex operates a strict TPRM Program to ensure vendors align with our security standards.
REAL-TIME DETECTION
Around-the-clock monitoring
We keep a vigilant watch over our platform, gathering real-time insights to detect any threats so you can keep focusing on your business.
Anti-DDoS Protection
At every step of the development process, we use security best practices—like design and code reviews, threat modeling and penetration tests—to ensure a safe platform.
SOC & SIEM
Our data in transit encryption uses HTTPS, TLS 1.2+ and automatic SSL, while data at rest uses AES-256- the strongest encryption standard commercially available
Security Visibility
All Nex sites are compliant with the highest Payment Card Industry Data Standards, supported by anti-fraud protection, to safeguard payment info and protect transactions.
Data Analysis & Machine Learning
Third-party services help provide an optimal experience, but can pose vulnerabilities. Nex operates a strict TPRM Program to ensure vendors align with our security standards.
Bug Bounty Program
Third-party services help provide an optimal experience, but can pose vulnerabilities. Nex operates a strict TPRM Program to ensure vendors align with our security standards.
Protection when you need it most
The success of your business depends on its availability and continuity. That’s why Nex designs response plans to keep your business up and running, in any situation.
Incident Response
At every step of the development process, we use security best practices—like design and code reviews, threat modeling and penetration tests—to ensure a safe platform.
Business Continuation Plan (BCP)
Our data in transit encryption uses HTTPS, TLS 1.2+ and automatic SSL, while data at rest uses AES-256- the strongest encryption standard commercially available
Periodic Training & Simulations
All Nex sites are compliant with the highest Payment Card Industry Data Standards, supported by anti-fraud protection, to safeguard payment info and protect transactions.
Compliance and certifications
Get secure, scalable web hosting built right in when you create your website with Nex—no setup needed. Plus enjoy a free domain name for one year with select website plans.
Physical data security
for physical, environmental & hosting controls.
FAQ
Why is website security important?
Website security is essential to protect your site from DDoS attacks, malware and other cyber security threats. These threats attempt to gain access and use confidential information from both you and your visitors.
At Nex, security is built into our processes and platform, complemented by 24/7 monitoring to detect vulnerabilities. We’re constantly upgrading our security protocols and practices in order to keep your sites and business protected.
How can I make sure my Wix account and sites are secure?
Nex provides several security options to help make sure your account and sites are safe. We recommend adding an extra layer of protection to your login by enabling 2-step verificationthrough email, SMS or third-party authentication app. We also encourage users to create tough-to-break passwords with multiple characters and symbols.
For content management security, you can set Roles & Permissions for others collaborating on creating your site, giving you control over the data they have access to. You can also choose to allow single sign-on and site members validation for site visitors. Nex supports Facebook and Google SSO for individuals, and OpenID Connect protocol for enterprises.
How does Nex protect my site visitors’ data?
Information Security and the protection of user and site visitor data is of the highest priority at Nex. The Nex Security team uses an Information Security Program based on international best practices, and it’s constantly evolving to address emerging threats. We also implement data encryption using HTTPS, TLS 1.2 and above, and SSL.
Wix software engineers develop our platform with a security by design approach, which means they keep security and privacy top of mind throughout all design phases. Nex seeks to add as many default and out-of-the-box security boundaries to its systems as possible, in order to reduce the probability of vulnerabilities and to support secure development.
All Nex sites come with an SSL certificate. You can read more about SSL and HTTPS here.
How does Nex protect my payments and transactions?
We maintain PCI DSS Level 1 certification, the highest Payment Card Industry Data Security Standard. Nex regularly monitors its systems for possible vulnerabilities and attacks, and seeks new third-party services to help maintain the security of our platform and privacy of user data. We also use an innovative combination of data analysis and machine learning to help protect you and your site visitors from possible fraud activities. This same Nex infrastructure that incorporates security from the initial development of our products includes multi-cloud ecommerce hosting that helps improve page performance and speed.
Who’s in charge of security at Nex?
Nex has a dedicated security team made of industry-leading experts. We also get the support and perspective of external independent researchers through initiatives such as our Bug Bounty Program.
Our security team is tasked with maintaining the company’s defense systems, developing security review processes, building a security infrastructure and constantly monitoring and optimizing our security solutions, so users can focus on running their businesses.
How can I contact Wix about website security?
We take security issues very seriously, and are committed to protecting your data and that of your clients and site visitors. If you have any questions, you can contact the Nex Security team at security-report@nex.com. Learn more
The way hosting should be