Security Statement

Baseline aligned with ISO 27001 and FISMA control intent.

Technical Controls

Strict browser security headers and content security policy.

Restricted permissions policy for camera/mic/geolocation.

XSS and MIME hardening through response header policy.

Cache behavior tuned for safe updates to HTML and service worker.

Operational Controls

Privacy-by-default front-end design, with local processing where possible.

Consent gating for optional data categories.

Documented legal and policy pages for transparency.

Responsible Disclosure

To report a vulnerability, contact codeon@bluetext.in with reproducible details. Please do not publicly disclose issues

Back to Home