Trust

Security

Last updated: July 2026

Systems work is a lot of what we do, so we hold ourselves to the same standard we'd expect from a vendor handling our own organization's data.

Account protection

  • Passwords are never stored in plain text. Authentication runs through Supabase's managed auth, which handles hashing and session security.
  • Access to client and applicant data is scoped by role: employer accounts see what employers need to see, job seeker accounts see what job seekers need to see, and admin access is restricted to the RAEFORM team.
  • Sensitive profile and job changes go through a review step before they affect anyone's public-facing data.

Infrastructure

The site runs on established, actively maintained hosting and database infrastructure rather than custom-built servers, so security patches and uptime are backed by providers whose whole job is running that infrastructure safely.

Client engagements

For engagements that involve access to a client's own systems, we scope access to what the project actually requires, use unique credentials rather than shared logins, and remove access when the engagement ends.

Reporting a concern

If you believe you've found a security issue on byraeform.com, email raeformtoday@gmail.com with details. We take these reports seriously and will follow up directly.

Copy away. Great ideas deserve to inspire.