Tilda Data Protection & Website Security
Find Out How Tilda Secures Your Websites And Protects Both Your Data And That Of Your Clients
TILDA SAFETY
At Tilda, we take security seriously and use the latest technologies to ensure the safety of your websites and data. Find out how Tilda protects your data and keeps your websites safe so that you can focus on design, content, and business tasks without worrying about anything else.
How Tilda Keeps Your Websites Safe
Our Robust Security Measures & Technologies In Detail
Data Encryption Prevents Breaches
All data transferred between Tilda users and the Tilda servers is encrypted. Additionally, Tild's databases are encrypted, ensuring the data's safety even in the event of a database breach. Our encryption methods utilize TLS 1.3 and SSL and are certified with RSA 2048 bits.
Robust DDoS Attack Protection
We use industry-leading DDoS shield solutions provided by Cloudflare. DDoS is a distributed attack on the website to affect its availability. If a suspected attack occurs, suspicious requests are temporarily blocked, greatly reducing the likelihood of a large-scale attack.
Physical Data Secured From Unauthorized Access
Tilda relies on world-leading data center providers—award-winning Hetzner and Amazon Web Services—that meet the highest international standards in the industry. Tilda main servers are located in Germany and Finland.
SSL Certificates For Secure Data Communication
Website traffic is encrypted via SSL, a secure end-to-end HTTPS connection for Tilda users and their visitors. All websites published on the tilda. ws subdomain get an SSL Certificate connected by default. Tilda users with custom domains can enable the SSL Certificate for free with one click.
Safe Payments
On Tilda, payments are securely processed by Stripe, a certified Level 1 Service Provider. Tilda never has access to sensitive payment details.
Distributed Network Reinforces Website Resilience
Tilda engineers have built and continue to refine a distributed system of secure servers and networks all over the world. Our Cloudflare data center spans 310 cities across 120 countries. As a result, your websites stay up and running no matter what.
Immediate Threat Response With Real-Time Monitoring
All systems in our platform are being monitored 24/7 to identify and neutralize any potential threat early.
How Tilda Keeps Your Personal Data Safe
Our Policies & Practices For Privacy Protection
GDPR Compliance
Tilda is constantly evolving efforts to make sure we are up to date with GDPR, UAE's Federal Decree Law № 45 of 2021, and other highest data protection standards worldwide. These include careful revisions on handling personal data, editing tools that allow Tilda users to easily post their own legal terms or privacy policies on websites, etc.
Find out more about Tilda's actions that help us comply with GDPR and learn what you can do to ensure your website meets GDPR requirements.
Personal Account Security
Tilda users' credentials are secured with two-factor authentication (2FA). This extra layer of protection strengthens the authentication process and prevents unauthorized access by requiring more than just a password.
Your Data Is Under Your Control
You can update, modify, or delete personal data on Tilda at any time. For a detailed description of how Tilda collects and processes personal information, as well as contact information for our legal department, please see our Privacy Policy.
Find answers to questions related to website and data security
F.A.Q.
Yes, it is fully safe as Tilda processes and stores data associated with EU citizens within EU borders according to the GDPR requirements. Learn more about GDPR compliance
Tilda comes with some security solutions that help you keep your account safe. It is recommended to enable the 2FA to add an extra layer of security. Also, creating complex passwords with numerous characters and symbols considerably decreases risks.
The data coming from the online forms is sent at once to the data capture services connected to the forms. Before being sent, data is cached on the European server for some time to allow for error checking in the "Leads" menu or for resubmission.
Once submitted, the data is cached on the server for as long as you specify in the settings: By default, this is one month, but you can reduce it to one day or delete the data immediately. Once the specified period has expired, the cached data is deleted and cannot be recovered.
These settings and caching terms allow Tilda's policy to comply with personal data protection legislation, including GDPR.
Once submitted, the data is cached on the server for as long as you specify in the settings: By default, this is one month, but you can reduce it to one day or delete the data immediately. Once the specified period has expired, the cached data is deleted and cannot be recovered.
These settings and caching terms allow Tilda's policy to comply with personal data protection legislation, including GDPR.
We try to use only essential cookies crucial for the platform to operate correctly, such as launching the platform guide for new users. If any Tilda resources, such as Tilda Webinars, use more than just the essential cookies, a cookie banner will inform visitors of the additional cookies used and allow them to decide whether to accept them or not.
Tilda-made websites are hosted on the cloud and all the necessary settings, such as robots.txt and sitemap.xml file creation, are automatically applied or adjusted manually in the personal account (connecting HTTPS, configuring redirect, etc.). Learn more about technical details.
Still have questions?
Feel free to contact us at legal@tilda.cc if you have any questions regarding our Privacy Policy or if you want to exercise your rights and choices.
Join Tilda – The Platform For Secure Website Creation
Create website 