Security Statement
Last updated: June 2026
Identity security is the practice — so the way we handle your information should reflect that. This statement describes how Link3IT approaches security during engagements and on this site.
Least-privilege access
During engagements, access to your environment is scoped to exactly what the work requires and is read-only wherever possible. We never request standing or broad administrative access we don't need, and we document what access is granted before any work begins.
Handling of findings & evidence
Assessment evidence and findings are treated as confidential. They are shared with you and retained only as long as needed to deliver the report and roadmap. Sensitive details are never reused across clients.
Confidentiality
Engagements operate under confidentiality from day one, and a mutual non-disclosure agreement is welcomed and routine. Client identities are never disclosed without explicit permission, which is why public materials on this site are anonymized.
This website
The site is a static build with no database and no stored user accounts, which minimizes its attack surface. The only information it transmits is what you choose to send through the contact form or by email.
Responsible disclosure
If you believe you've found a security issue with this site, we'd genuinely like to know. Please email asymister@link3it.com and we'll respond quickly.