Data Collected
Only contact-form submissions are intentionally collected when you choose to send a message. No user account system or application database is used on this site.
Trust and Security
This portfolio uses privacy-first defaults, strict security headers, and minimal data collection.
Security Controls
HTTP security headers, strict transport security, request validation, origin controls, and rate limiting are applied at the app and middleware layers.
Contact Form Handling
Contact form submissions pass through anti-spam checks and are forwarded to configured delivery targets (webhook or email provider). Sensitive secrets are stored in Vercel environment variables.
Operational Hygiene
Platform credentials use unique passwords and multi-factor authentication. Dependencies and deployment settings are periodically reviewed for updates.
Disclosure and Policy Links
Security contact and disclosure metadata are available at /.well-known/security.txt. Privacy details are on the privacy page.