Security

TrustSignal security posture.

Security model

TrustSignal is designed around evidence integrity, signed receipts, and tamper detection. Public-facing website access is informational only and does not expose administrative controls or private system operations.

Safe defaults

The site is deployed behind managed hosting, TLS, and restricted form handling. Pilot requests are validated server-side before they are relayed to TrustSignal contact channels.

Access controls

Public visitors can review marketing and pilot information only. Operational workflows, private registries, internal code paths, and secrets remain outside the public site boundary.

Reporting

Security concerns should be reported to info@trustsignal.dev. Do not include sensitive personal data in the initial report.