Security – First & Always Your website’s security is foremost on our mind.

Here’s what goes into it.


Every Cloudways managed server comes with a firewall that allows access only to specific ports that are required for applications to function.

Login Security

For our users, rate-limiting for SSH and SFTP logins is a simple yet effective method to dealing with brute-force login attacks.

Bot Protection

Protect your Joomla websites from traffic congestion caused by malicious bots, brute force login attacks and Denial-of-Service (DoS) attacks with the help of our technology partner, Malcare.

Database Security

By default, the database cannot be accessed remotely. However, users can whitelist IP addresses to set up secure database remote access.

Application Isolation

While the users can launch multiple applications on a single server, each application is isolated from the rest, thus preventing application level issues to compromise the entire server.

SSL Certificates

We provide all users with FREE Let’s Encrypt SSL certificates to ensure security of application’s data in transit.

Operating System’s Security

Cloudways is powered by Debian, partly because of the strong and prompt patch management system. Our engineers regularly follow-up with Debian community to remain updated with the current issues/vulnerabilities in Debian and patch the customer servers as soon as the patch is made available.

Bug Bounty Program

Server security is a team sport! For this, we have partnered with BugCrowd to crowdsource vulnerability discovery in Cloudways Platform.

GDPR Compliance

Our compliance with the requirements of European General Data Protection Regulation (GDPR) is just another demonstration of our commitment to the security of customer data and our large European customer base.

Two-Factor Authentication

Access to our platform is protected with industry standard Two-Factor Authentication (2FA) to strengthen platform security and minimize the incidents of unauthorized access to user account.

End-to-End Encryption

The Cloudways platform is fully protected with end-to-end encryption that ensures that all data in transit is protected and encrypted with HTTPS protocol, preventing access to data during transfer from one system to another.

Suspicious Device Login Control

Cloudways checks all devices that attempt to access your account. In case a device (or a login attempt) is flagged as ‘Suspicious’, you are notified by email, the login process is interrupted and appropriate actions are taken to verify your identity.

Enterprise-grade performance and security with Cloudflare included

We include the Cloudflare Enterprise add-on to sit atop the Cloudways platform and offers advanced protection against hackers and threats at the edge.

DDoS attacks are mitigated in under 3 seconds via dedicated IP ranges, with prioritized routing and protection to ensure maximum speed and availability.

A Web Application Firewall (WAF) analyzes millions of sites and 32 million requests per second to intelligently identify & block attackers and emerging threats at the edge!

Connect with us

Sign up for our Newsletter

© CommerceLab all rights reserved. A ConsciousClouds Ltd Company
Cron Job Starts