New engagements · 24h
Skip to main content
Security

How We Handle Your Infrastructure

Security and trust practices for every engagement

Credential Management

Zero static keys policy

We operate on a zero static keys policy. All AWS access uses OIDC federation with temporary credentials scoped to minimum required permissions. We never store, transmit or retain long-lived AWS credentials.

✓ OIDC-only ✓ No static keys ✓ Least privilege IAM

Code & IP Ownership

Everything belongs to you from day one

All code produced belongs to you from day one. We use your repositories, your AWS accounts, your infrastructure. At engagement end, we perform a complete handoff with no residual access.

✓ Your repos ✓ Your accounts ✓ Full handoff ✓ No backdoors

Confidentiality

NDA before any technical discussion

We sign NDAs before technical discussions. Client details, architecture decisions and business context are never shared or referenced in public materials without explicit written consent.

✓ NDA available ✓ Client anonymization ✓ No public case studies without consent

GDPR & Data Handling

Cookieless analytics · No tracking

Contact form data is processed via Web3Forms (GDPR compliant). Cloudflare Web Analytics is cookieless and anonymous. We do not use retargeting pixels or behavioral tracking.

✓ Cookieless analytics ✓ No tracking pixels ✓ Data minimization

Questions about our security practices?

We're happy to discuss any aspect of how we handle your infrastructure before starting an engagement.

Contact us