Security - Ophanim LLC

Effective Date: February 22, 2026
Last Updated: February 22, 2026

This Security page describes how Ophanim LLC (“Ophanim,” “we,” “us,” or “our”) approaches protecting our systems, customer data, and website visitors. While no security program can guarantee absolute protection, we implement reasonable administrative, technical, and organizational safeguards designed to reduce risk.

1. Security Principles

Least privilege: Access is limited to what is required for a role or task.
Defense in depth: Multiple layers of controls are used to reduce single points of failure.
Secure by default: Systems are configured with conservative defaults and hardened over time.
Continuous improvement: We review controls and respond to new threats as they emerge.

2. Technical Safeguards

a) Transport Security

TLS/HTTPS is used to encrypt data in transit between your browser and our site where supported.
We recommend always accessing our site and portals over HTTPS and keeping browsers up to date.

b) Authentication & Access Control

Administrative access is restricted to authorized personnel.
Strong passwords and (where available) multi-factor authentication are used for privileged accounts.
Access is reviewed periodically and removed when no longer needed.

c) Data Protection

We limit data collection to what is necessary for operations, support, and security.
Secrets (API keys, tokens) should never be stored in public code repositories or shared over insecure channels.
We encourage customers to encrypt sensitive files before transmission when feasible.

d) Monitoring & Logging

We maintain logging and monitoring to help detect abuse, spam, and suspicious activity.
Logs may include IP address, user agent, timestamps, and request metadata for security and troubleshooting.

3. Website Forms & Abuse Prevention

Our contact form uses anti-abuse measures (including CAPTCHA, such as hCaptcha) to reduce spam and automated submissions. These measures may process browser/device signals to distinguish legitimate visitors from bots.

4. Vulnerability Reporting

We welcome responsible disclosure. If you believe you’ve found a security vulnerability, please report it to:

Email: security@ophnm.com (Subject: “Security Report”)

What to include

A clear description of the issue and where it was observed
Steps to reproduce (proof-of-concept if available)
Any potential impact you believe is possible
Your contact information for follow-up questions

Guidelines

Please do not access or modify data that does not belong to you.
Please avoid actions that could disrupt services (e.g., DDoS, mass scanning).
Give us a reasonable time to investigate and remediate before public disclosure.

5. Incident Response

If we identify a security incident affecting our systems, we will take appropriate steps to contain, investigate, and remediate the issue. Where required, we will provide notifications in accordance with applicable law and contractual obligations.

6. Customer Responsibilities

Use strong, unique passwords and enable multi-factor authentication where available.
Keep devices and browsers patched and updated.
Verify links and attachments before opening to avoid phishing attacks.
Do not share credentials. Remove access promptly when personnel change.

7. Updates to This Page

We may update this Security page from time to time. When we do, we will revise the “Last Updated” date above.

8. Contact

For security questions, please contact us at:

Ophanim LLC
Wyoming, United States
Email: sales@ophnm.com
Website: www.ophnm.com