Defence in depth

Security and Trust

VowRewards separates browser interactions, server-side portal APIs, the Afrihost bridge, MySQL and privileged blockchain operations.

Identity and access

Portal-specific sessions, server-side role checks, rate limits and auditable approvals are required for production operations.

Financial controls

Reward, redemption, settlement and cashout workflows require validated state transitions and duplicate-execution protection.

Data protection

Secrets remain server-only; sensitive payout information requires authenticated encryption and restricted access.

Responsible reporting

Security concerns can be reported to support@vowrewards.co.za. Do not include private keys or sensitive personal data.

Contact VowRewardsBack to VowRewards