Log inRequest Demo
FeaturesHow It WorksFAQContact
Log inRequest Demo

Security

Last Updated: February 17, 2026

Verdan's marketing site is designed with a privacy- and security-minimizing architecture: it is a static site with no server-side application code, no user accounts, and no analytics or advertising scripts.

If you believe you've found a security issue, please report it to us at hello@verdanhq.com with the subject line  “Security Report”.

Security overview

Minimal data handling

  • The marketing site does not require accounts or logins.
  • We do not run analytics, ad pixels, session replay, or other tracking scripts.
  • The demo request flow uses a mailto: form that opens your email client; the form does not submit to a Verdan server.
  • If you email us (including demo requests), we receive your message like any other email communication.

Website delivery and protection

The site is hosted and delivered through Cloudflare, which provides performance and security protections (such as DDoS mitigation and web application firewall capabilities).

Traffic to the site uses HTTPS.

Access controls

Administrative access to infrastructure and email systems is limited to founders and management.

Multi-factor authentication (MFA) is required for key accounts and services.

Email security

Company email is hosted on Google Workspace.

We use Google Vault for retention and eDiscovery controls.

Access to inboxes is restricted to authorized personnel.

Reporting a vulnerability

We appreciate responsible disclosures.

When reporting, please include:

  • A clear description of the issue and potential impact
  • Steps to reproduce
  • Affected URL(s) or page(s)
  • Screenshots or logs (if helpful)

We aim to acknowledge valid reports within a reasonable timeframe.

Good-faith testing guidelines

Please do not:

  • Access or modify data that is not yours
  • Use social engineering (phishing, impersonation) against our team
  • Run denial-of-service (DoS) tests
  • Perform automated scanning at a level that could degrade site availability

If you follow these guidelines and report issues responsibly, we will treat your report as authorized, good-faith security research.

Scope notes

This page describes security practices for Verdan's marketing site. Any future product, application, or API may have additional security controls and separate documentation.

Third-party websites linked from our site are governed by their own security practices and policies.

Updates

We may update this Security page from time to time. We will post changes here and update the “Last Updated” date above.