Legal
Security
How Megladon protects private enquiries, invite-only workspace access, and controlled deal-flow communications.
Last updated 9 July 2026
1. Access model
Megladon workspace access is invite-only. Public forms do not create a workspace account, and private workspace roles are scoped to the relationship and operational need.
Administrative access is limited to approved operators and should be protected with strong authentication and least-privilege controls.
2. Transmission and storage
Public website traffic is served over HTTPS. Authentication sessions, workspace records, and operational systems use managed infrastructure with access controls appropriate to the sensitivity of the workflow.
Confidential transaction documents should only be exchanged through the private route requested by Megladon, not through public forms.
3. Operational controls
Megladon uses role-scoped workflow surfaces, review states, controlled invitations, and internal records to reduce unnecessary disclosure.
The operating principle is simple: no authority, no motion; no disclosure permission, no circulation.
4. Service providers
Megladon may rely on managed providers for hosting, authentication, email delivery, logs, analytics, and operational tooling. Provider access is limited to what is needed for the service they perform.
5. Incident handling
If Megladon identifies a security or personal-data incident, we will investigate, contain, and notify affected parties or authorities where required by applicable law.
6. Vulnerability reports
Security concerns can be sent to [email protected]. Please avoid public disclosure until Megladon has had a reasonable opportunity to investigate and respond.