Security

How CLINKA protects your account, payments, and communications.

Last updated: June 17, 2026

1. Our security commitment

CLINKA is built for professional engineering work where trust matters. We combine technical safeguards, identity verification, and platform policies to reduce fraud and protect clients and engineers.

2. Account and authentication security

Passwords are stored using industry-standard hashing and are never stored in plain text. Sessions use signed JWT tokens delivered via secure HTTP-only cookies to reduce exposure to cross-site scripting.

You can sign in with email and password or Google OAuth where enabled. Enable a strong, unique password and do not share your login credentials with anyone.

3. Engineer identity verification

Before engineers can bid, CLINKA admins review submitted documents such as college ID, professional certificates, or syndicate membership cards.

Verified engineers receive an approved status on the platform. We may revoke verification if documents are found to be false or expired.

4. Payments and escrow

Client payments for accepted projects are processed through Paymob, a licensed payment gateway. Card and payment details are handled by the gateway—not stored on CLINKA servers.

Funds remain in escrow until the client releases payment after reviewing deliverables, reducing the risk of paying for incomplete work.

5. Messaging safety

In-platform chat is monitored for attempts to share off-platform contact details, which can be used to bypass escrow and verification protections.

Users who violate messaging rules may receive temporary suspensions. Admins can review reported conversations when investigating abuse.

6. Infrastructure and data

Application data is stored in secured databases with access restricted to authorized systems. File uploads (profile images, portfolios, chat attachments, verification documents) are hosted through Cloudinary with access controls appropriate to their use.

7. Your responsibilities

Keep your device and browser updated, log out on shared computers, and report suspicious account activity immediately.

Never send passwords, payment card numbers, or one-time codes to other users in chat or email. CLINKA staff will never ask for your password.

8. Reporting security issues

If you discover a vulnerability or security concern, contact us through the Help Center at /help or email our support team. We investigate all good-faith reports promptly.