Cliq Docs
Administration

Security

Secure your Cliq workspace with best practices and features

Security

Cliq takes security seriously. Learn how to protect your workspace and data.

Authentication

Password Requirements

All passwords must meet these requirements:

  • Minimum 8 characters
  • At least one uppercase letter
  • At least one lowercase letter
  • At least one number

Two-Factor Authentication (2FA)

Add an extra layer of security with 2FA:

  1. Go to ProfileSecurity
  2. Click Enable 2FA
  3. Scan the QR code with your authenticator app
  4. Enter the verification code
  5. Save your backup codes

Save your backup codes in a secure location. You'll need them if you lose access to your authenticator app.

Enforcing 2FA for Your Team

Admins can require all members to use 2FA:

  1. Go to SettingsSecurity
  2. Enable Require 2FA for all members
  3. Set a grace period for members to enable 2FA

Single Sign-On (SSO)

Enterprise workspaces can configure SSO with:

  • Google Workspace
  • Microsoft Azure AD
  • Okta
  • Custom SAML 2.0 providers

Configuring SSO

  1. Go to SettingsSecuritySSO
  2. Select your identity provider
  3. Follow the provider-specific setup instructions
  4. Test the connection
  5. Enable SSO for your workspace

Session Management

Active Sessions

View and manage your active sessions:

  1. Go to ProfileSecuritySessions
  2. See all devices where you're logged in
  3. Click Revoke to end a session

Session Timeout

Configure automatic session timeout:

  1. Go to SettingsSecurity
  2. Set Session Timeout duration
  3. Choose whether to require re-authentication

Audit Logs

Track all security-relevant events in your workspace:

Logged Events

  • Member sign-ins and sign-outs
  • Failed login attempts
  • Role changes
  • Member invitations and removals
  • Workspace setting changes
  • Project access changes

Viewing Audit Logs

  1. Go to SettingsSecurityAudit Log
  2. Filter by date range, user, or event type
  3. Export logs as CSV for compliance

Data Protection

Encryption

  • In Transit - All data is encrypted using TLS 1.3
  • At Rest - All data is encrypted using AES-256

Data Residency

Cliq is based in Norway and stores data in European data centers, ensuring GDPR compliance.

Backups

  • Automatic daily backups
  • 30-day backup retention
  • Point-in-time recovery available

API Security

API Keys

Manage API keys for integrations:

  1. Go to SettingsAPI
  2. Click Create API Key
  3. Set permissions and expiration
  4. Copy and securely store the key

API keys provide programmatic access to your workspace. Never share them publicly or commit them to version control.

Rate Limiting

API requests are rate-limited to prevent abuse. See Rate Limiting for details.

Security Best Practices

  1. Enable 2FA for all team members
  2. Use SSO if available for your organization
  3. Review audit logs regularly
  4. Rotate API keys periodically
  5. Remove inactive members promptly
  6. Use strong, unique passwords

Members and Roles

Manage team members and their permissions in Cliq

Getting Started

Get started with the Cliq API and developer tools

On this page

SecurityAuthenticationPassword RequirementsTwo-Factor Authentication (2FA)Enforcing 2FA for Your TeamSingle Sign-On (SSO)Configuring SSOSession ManagementActive SessionsSession TimeoutAudit LogsLogged EventsViewing Audit LogsData ProtectionEncryptionData ResidencyBackupsAPI SecurityAPI KeysRate LimitingSecurity Best Practices