This security policy outlines the vulnerability disclosure process and security practices for nickboariu.io.

Vulnerability Disclosure

If you believe you have found a security vulnerability in this website, please report it to me directly. I appreciate the efforts of security researchers and am committed to resolving issues promptly.

Reporting Process

• Please report vulnerabilities via the contact page.
• Include a detailed description of the vulnerability and steps to reproduce it.
• Do not publicly disclose the vulnerability until I have had a reasonable amount of time to address it.

Scope

• In Scope: Any page or functionality served under the nickboariu.io domain.
• Out of Scope: Third-party services (e.g., Vercel, external analytics) unless the vulnerability is caused by my implementation.

Data Privacy

This is a personal blog. I do not collect personal data from visitors, with the following exceptions:

• Vercel Speed Insights: Used to monitor the performance of the website. This data is anonymous and does not track individual users.
• Vercel Analytics: Used to understand visitor trends.

No cookies are used for advertising or cross-site tracking. Theme preference is stored locally in your browser.