Systems work is a lot of what we do, so we hold ourselves to the same standard we'd expect from a vendor handling our own organization's data.
The site runs on established, actively maintained hosting and database infrastructure rather than custom-built servers, so security patches and uptime are backed by providers whose whole job is running that infrastructure safely.
For engagements that involve access to a client's own systems, we scope access to what the project actually requires, use unique credentials rather than shared logins, and remove access when the engagement ends.
If you believe you've found a security issue on byraeform.com, email raeformtoday@gmail.com with details. We take these reports seriously and will follow up directly.