Security
Security Overview
We prioritize practical safeguards that protect client inquiries and keep systems resilient.
Last updated: March 1, 2025
Security approach
We design security into workflows from the start—focusing on least privilege, reliable controls, and continuous monitoring rather than one-time checklists.
Secure development practices
- Security reviews are built into delivery and change management.
- Access is limited to authorized personnel and reviewed regularly.
- We validate input and enforce reasonable guardrails on public forms.
Infrastructure and vendors
We use trusted providers to deliver secure infrastructure and messaging services, including Cloudflare (Pages and Turnstile) and Resend for email delivery. These providers act as processors under our direction and help us maintain availability and resilience.
Operational safeguards
- Rate limiting and abuse protections on public endpoints.
- Monitoring and logging to detect unexpected behavior.
- Regular review of vendor risk and access controls.
Responsible disclosure
If you believe you’ve discovered a security issue, contact us at security@sevrak.com. Please provide a clear description of the issue and steps to reproduce it, and do not include sensitive data in your report.