Security

Verified security practices for Flux3D

Flux3D provides custom 3D printing and manufacturing services. The website uses authenticated server routes, role-based access, and server-side payment verification to protect customer and order data.

Role-based access

Administrative pages use authenticated routes and server-side access checks. Public pages do not require a login.

Server-side authorization

State-changing operations such as order creation, contact submission, and payment callbacks are validated on the server.

Payment verification

The PayU flow uses server-generated payment fields and verifies gateway responses before marking a payment successful.

Auditability

Order, billing, and admin workflows are logged through application routes and database-backed records.

What is verified today

  • Public pages are served without login.
  • Support details shown on the site use the verified Flux3D contact information.
  • PayU payment requests are built on the server, not in the browser.
  • Gateway responses are verified before an order is marked paid.
  • Customer support, refund, delivery, and legal pages are public and linked in the footer.

Flux3D does not claim SOC 2, ISO 27001, PCI-DSS, or any other certification unless separately verified and published.