Security Contact
Security reports should be sent to security@cybersentinels.ai. Trust workflow questions should be routed to trust@cybersentinels.ai, and abuse reports should be sent to abuse@cybersentinels.ai.
Cyber Sentinels
Preparing the authorized workflow view. No trust state is inferred while data is loading.
Draft policy — requires legal review before production use.
Cyber Sentinels is designed around evidence-backed verification, protected evidence handling, accountable governance review and auditable operational chronology.
Security reports should be sent to security@cybersentinels.ai. Trust workflow questions should be routed to trust@cybersentinels.ai, and abuse reports should be sent to abuse@cybersentinels.ai.
Operational data stores use row-level access policies and authenticated grants so records remain scoped to owners and authorized workflows.
Evidence files should be stored in private buckets and accessed through controlled review flows. Public evidence exposure should require separate approval.
Security-relevant activity writes audit events so passport creation, evidence review, decisions, admin access and data-rights requests can be traced.
Protected operational areas and sensitive APIs require authenticated sessions, admin allowlist checks and a verified admin cookie before sensitive actions can be performed.
Reports should include the affected route or API, reproduction steps, observed impact, screenshots or request IDs where safe, and contact details for follow-up. Do not access customer data, disrupt service, bypass rate limits or disclose findings publicly before review.
Security, abuse and trust reports should be acknowledged, triaged to an owner, reviewed against evidence and closed with a recorded outcome appropriate to severity and operational impact.
Logout and session-expiry flows should clear admin state and redirect users away from protected operations when access is no longer valid.
Cyber Sentinels does not claim raw biometric storage. No raw biometric processing or storage should be implemented unless separately designed and legally reviewed.