Security
Last updated: 16 June 2026
We aim to handle the limited data this site collects responsibly.
How we protect data
- Encryption in transit: the whole site is served over HTTPS/TLS.
- Data minimisation: we only ask for what a business inquiry needs, and we tell you not to upload sensitive data.
- Trusted processors: hosting and email run on reputable providers under data-processing terms.
- Limited retention: inquiries and logs are kept only as long as needed (see Privacy Policy).
- Access control: access to inquiries is limited to people who need it.
Reporting a vulnerability
If you believe you've found a security issue on a KocaExpress site, please email hello@kocaexpress.com with the details. Please don't publicly disclose it before we've had a chance to fix it. We appreciate responsible disclosure.
This page describes our general approach for this homepage; individual brands (payments, messaging, creator services) document their own additional security measures.