Security

Last updated: July 15, 2026

We continuously strengthen the security of this site and demo environments across prevention, containment, detection, recovery and logging.

Applications & permissions

  • Role-based access control and least privilege
  • Multi-factor authentication (MFA) for administrators
  • Server-side validation, sanitization and escaping
  • CSRF protection, rate limiting and bot mitigation on forms

Demo isolation

  • Each demo isolates subdomain, database and credentials
  • Synthetic data only — never real customer data
  • Access is granted temporarily and expires afterward

Infrastructure & monitoring

  • Cloudflare proxy, WAF and rate limiting
  • Encrypted off-site backups with tested restore
  • Audit logs for authentication, admin and server events

Reporting a vulnerability

If you find a vulnerability, contact info@strategya.co.jp. Detailed reproduction steps are appreciated.