Secure-by-default delivery
Identity, access, data handling, least privilege, backup thinking, and operational risk are considered as part of delivery, not as an afterthought.
Security & Trust
Fortua handles business enquiries, AI-assisted triage, and website operations with a security-conscious, GDPR-aware approach built around Cloudflare and Microsoft services.

Commitments
The website reflects the same operating principles Fortua brings to customer work: reduce unnecessary exposure, make ownership clear, and keep security part of the delivery model.
Identity, access, data handling, least privilege, backup thinking, and operational risk are considered as part of delivery, not as an afterthought.
The site uses Cloudflare Pages, Workers, D1, KV, Turnstile, Web Analytics, and AI, with Microsoft Graph for controlled Office 365 email delivery.
Cloudflare AI supports enquiry classification, summarisation, and the website assistant. It does not replace human commercial judgement.
The contact flow minimises exposure, hashes IP data for abuse control, stores enquiries in D1, and explains processing in the privacy policy.
Contact data
The contact form is designed to route useful context without making the process feel heavy.

Security posture
Fortua avoids vague security claims. The public site uses security headers, Turnstile protection, rate limiting, hashed IP handling for abuse control, privacy-conscious analytics, and a token-protected monitor endpoint for operational checks.
Discuss your requirements