Security

This page summarizes the security posture for michaeldishmon.com, the member portal, the client portal, reports, checkout, and AI-assisted report chat. It is written for customers and clients who need to understand how the site handles access and data.

Clients and account holders are responsible for keeping account credentials private, using strong passwords, and telling Michael promptly if access should be revoked for a team member.

Please avoid uploading regulated sensitive data, payment card numbers, medical records, government IDs, or privileged legal material unless there is a separate written agreement covering that data.

If I discover a security incident that affects personal data or client data, I will investigate, contain the issue, preserve useful logs, notify affected users when legally required, and make a practical remediation plan.

If you believe you found a vulnerability, email berserk@michaeldishmon.com with the subject line “Security Report.” Include the URL, steps to reproduce, and the impact you believe it has.

Good-faith reports are welcome. Please avoid accessing other people’s data, running destructive tests, or interrupting the service.

Data handling is described in the Privacy Policy. Optional tracking is described in the Cookie Policy. Contract terms are described in the Terms of Service.