Skip to content
Generic Service

Security

Security & Disclosures

Last updated: January 17, 2026

We treat security as operational hygiene. This page covers disclosure and how we handle data.

Security posture

  • Least-privilege access and time-bound credentials wherever possible.
  • Documentation-first delivery with explicit recovery paths.
  • No client data is stored on this public site.

Disclosure

  • If you believe you have found a security issue, email contact@genericservice.app.
  • Include steps to reproduce and any relevant logs or evidence.
  • We respond to good-faith reports and coordinate remediation timelines.
  • Security.txt is available at /.well-known/security.txt.

Encrypted disclosure

  • PGP is available on request. Email contact@genericservice.app with the subject "PGP key".
  • If you need an alternate encrypted channel, note it in your disclosure.

Client confidentiality

  • Notes are anonymized and scrubbed of identifiers.
  • We do not publish client names, logos, or internal data without permission.