Security
Security and Anti-Spam Posture
The production site protects contact and booking workflows with validation, abuse controls, secure headers, and privacy-conscious handling.
Dr. Oluseye Fadiran
Executive technology leadership portrait placeholder
Executive portrait
Security and Anti-Spam Posture
The public site assumes HTTPS deployment, protects contact and booking workflows, and avoids unnecessary storage of sensitive message content.
Server-side Zod validation on all form submissions.
CSRF token verification and same-origin checks.
Rate limiting and repeated-submission detection.
Cloudflare Turnstile support for bot protection.
Honeypot fields and input sanitization.
Secure HTTP headers, including CSP, HSTS, Referrer-Policy, and Permissions-Policy.
Environment-variable based secrets with no exposed API keys.
Provider abstraction for email and calendar integrations.