Security

Site scope

This is a static informational website. It does not include:

• User login or authentication
• User accounts or registration
• Payment processing
• Contact or input forms
• Live or production credit portfolio data
• Third-party scripts or external service integrations

Active security headers

The following HTTP security headers are active on all responses from this site:

• X-Content-Type-Options: nosniff
• X-Frame-Options: SAMEORIGIN
• Referrer-Policy: strict-origin-when-cross-origin
• Permissions-Policy: camera=(), microphone=(), geolocation=()
• Strict-Transport-Security: enforced by Vercel infrastructure

Responsible disclosure

If you believe you have identified a security issue related to this website, please report it responsibly to:

contact@continuum-framework.com

Please do not send sensitive portfolio or customer data by email unless a formal secure channel has been agreed in advance. Do not disclose findings publicly before a reasonable opportunity to review has been provided.

Bug bounty

There is no public bug bounty programme at this time.

Hosting infrastructure

This site is hosted on Vercel. Infrastructure-level security is managed by Vercel. Refer to Vercel’s security page for details.