Security & Confidentiality
Last updated: May 2026
The GCrypto Executive Dashboard is an internal tool. This page describes how we protect it and how to report a problem.
Controls in place
- HTTPS-only with HSTS, strict transport security headers, and a Content Security Policy.
- Per-account authentication. Sessions are short-lived and revocable by administrators.
- Row-Level Security on the backing database — every query is scoped to the signed-in user.
- Per-viewer watermark on the dashboard surface to deter screenshot sharing.
- Confidentiality notice displayed on every page.
Reporting a vulnerability
If you believe you have found a security issue, please email security@g-dash.xyz. We respond within 2 business days. Please do not publicly disclose the issue before we have had a chance to address it.
Reporting suspected misuse
If you receive a suspicious link claiming to be the GCrypto Dashboard, or believe an account has been compromised, contact security@g-dash.xyz immediately.
Machine-readable contact
Our security.txt is published at the standard /.well-known/security.txt path.