FixoraPro
Security & Procurement Trust Center

Enterprise-Grade Security.
Compliance You Can Depend On.

Fixora is designed to meet the rigorous security, legal, and operational compliance standards required by enterprise letting agencies, BTR developers, and housing associations.

Uptime Targets

Targeting 99.9% uptime. Detailed uptime commitments are subject to custom signed service agreements.

AWS UK Infrastructure

100% data residency within AWS London (eu-west-2). Fully compliant with the UK Data Protection Act 2018.

UK GDPR Alignment

Logical database separation using PostgreSQL Row Level Security (RLS) policies to support data protection.

Indemnity Alignments

Professional Indemnity and Cyber Liability insurance alignment details subject to evaluation.

Procurement

Vendor Security Pack

Procuring software for large letting networks requires rigorous due diligence. Download our security pack below to bypass standard IT questionnaires.

Vulnerability Scan: Passed June 2026
Document Pack

Data Processing Addendum (DPA)

Standard contractual clauses governing UK GDPR compliant data processing, controller-processor obligations, and data storage guarantees.

Document Pack

Subprocessor List

Full directory of infrastructure partners, audit partners, database endpoints, and SMS carriers used to facilitate maintenance communications.

Document Pack

Incident Response Policy

Formal protocol outlining incident severity classifications, internal escalation paths, mitigation SLAs, and customer notification processes.

Document Pack

Disaster Recovery Policy

Business continuity layout outlining Recovery Point Objectives (RPOs), Recovery Time Objectives (RTOs), and backup frequency schedules.

Document Pack

Data Retention Policy

Clear data lifecycle schedules detailing how long customer ledger reports, landlord approvals, and contractor records are stored before purge.

Document Pack

Security Overview

Consolidated brief detailing encryption standards (AES-256 at rest, TLS 1.3 in transit), network isolations, and penetration testing frequencies.

How We Secure Tenant & Landlord Data

Fixora Pro employs a zero-trust model. We never store raw credit cards, bank accounts, or CMP funds. Ledger movements are reported via read-only CRM integrations, separating billing execution from money flow.

Our server configurations are audited quarterly by Crest-accredited network security firms. RLS database policies isolate every portfolio so that property managers can only access records relevant to their specific branch coordinates.

Zero Client Money Handling Risk

By decoupling software operations from transaction ledger execution, your client money protection (CMP) bounds are never breached. No landlord rents or contractor invoice payouts ever pass through Fixora accounts.

Secure Database Isolation Query

-- Enforced at the database engine level via Row Level Security (RLS)

ALTER TABLE maintenance_tickets ENABLE ROW LEVEL SECURITY;

-- Policy checks active organization claims on JWT token

CREATE POLICY tenant_isolation_policy ON maintenance_tickets
FOR ALL
USING (org_id = auth.jwt() -> 'user_metadata' ->> 'org_id');

-- Audit trail immutable hash lock

SELECT audit.log_operation('ticket_dispatched', ticket_id, sha256(payload::text::bytea));

Compliance Notice: Fixora Pro provides software workflow tools and audit tracking. It does not provide legal, accounting, tax, or regulatory advice. Agencies remain responsible for verifying their own compliance obligations, local licensing conditions, and client money protection processes.