CFDs are complex instruments and come with a high risk of losing money rapidly due to leverage. 82.67% of retail investor accounts lose money when trading CFDs. You should consider whether you understand how CFDs work and whether you can afford to take the high risk of losing your money
AL English
Country Albania
    Entity Capital Com Online Investments Ltd (SCB) (Regulated by SCB)
    English العَرَبِيَّة Deutsch ελληνικά Español Français Italiano Magyar Nederlands Polski Română Русский 简体中文 繁體中文

    Security

    Ensuring the security of your accounts is a key priority for us. At Capital.com, we are committed to protecting your funds and personal data using a holistic system of security controls.

    Our comprehensive security programme includes market-leading security solutions to ensure our platform and infrastructure are secure. We put measures in place to effectively detect security breaches which are reflected in our policies and our employee awareness programmes. All our security detection and assessment activities are monitored and continuously enhanced to establish and protect the integrity of our security systems.

    Capital.com's security measures

    Protecting your account

    Capital.com uses encryption and Two-Factor Authentication (2FA) to secure your account. We never store passwords in plain text, instead we employ salted secure hash algorithms to better protect your passwords and your accounts.

    Securing our network

    We use a combination of load balancers, firewalls, and VPNs to monitor and filter incoming and outgoing network traffic to defend against cyber attack threats. Our infrastructure is constantly monitored and we only transmit our data over encrypted transport layer security (TLS). In addition, we enable a HTTP Strict-Transport-Security response system to detect possible cyber threats and apply a DMARC policy to evaluate the authenticity of all email messages.

    Securing our platform

    The Capital.com security team drives an Application Security Programme which is designed to improve our code security and quickly detect vulnerabilities. To further promote security through the exchange of best practices and new ideas, we launched a bug bounty programme. This has enabled us to attract new perspectives on how to challenge emerging security threats.

    Protecting your information and ensuring data security

    Data security is at the heart of our business. To keep our clients’ information safe and secure, we continuously strive to stay in step with global standards, regulation and best practices. Affirming our commitment to maintain information security at every level, Capital.com complies with a host of international security standards.

    We have obtained ISO 27001  certification for our information security management and privacy risk management. An ISO international standard—the ‘gold standard’ for information security— ensures that products are safe, reliable and of good quality.

    In addition, our efforts to maintain a secure environment to accept, process, store and transmit credit card information has earned us a Payment Card Industry Data Security Standard (PCI DSS) certification.

    Finally, we will never share your personal information without your consent. If you encounter a perceived security issue in any of our products or features, please report it via email to vulnerability@capital.com immediately. For more information about our security policy, visit www.capital.com/security-policy