Security is part of how we build. This page summarises how we protect graphision.com and how to reach us if you find a problem.
How the site is protected
- The site is served over HTTPS with modern TLS.
- It is a static site delivered through Cloudflare's global network, with DDoS protection and a web application firewall in front of it.
- Form submissions are validated and protected against automated abuse.
How we work on client projects
Security and privacy by design are built into our engineering practice - from threat modelling and code review through testing, QA and ongoing maintenance. We scope the specific controls for each engagement in its statement of work.
Reporting a vulnerability
If you believe you have found a security issue with this website, please email hello@graphision.com with the details and steps to reproduce. We appreciate responsible disclosure and will acknowledge your report.