Our commitment
Security is fundamental to how MJC GlobalTech operates. We maintain an information security management approach aligned with ISO/IEC 27001, the international standard for information security management systems, and we apply industry best practices across our people, processes and technology.
Website security controls
This website is protected by a layered set of technical controls, including:
- Encryption in transit — all traffic is served over HTTPS/TLS, with HTTP Strict Transport Security (HSTS) enforced.
- Content Security Policy (CSP) — a strict all-list policy that mitigates cross-site scripting (XSS) and code-injection attacks.
- Clickjacking protection — framing is denied via
X-Frame-Optionsand CSPframe-ancestors. - MIME-sniffing protection — enforced with
X-Content-Type-Options: nosniff. - Least-privilege browser permissions — camera, microphone, geolocation and similar APIs are disabled by a restrictive Permissions Policy.
- Hardened hosting — directory listing disabled, sensitive files blocked, and risky HTTP methods rejected.
Organisational measures
- Role-based access control and the principle of least privilege.
- Secure software development and change-management practices.
- Vendor and processor due diligence for third-party services.
- Regular review of access, configuration and dependencies.
Responsible disclosure
We welcome reports from security researchers. If you believe you have found a security vulnerability in this website or our services, please report it to us privately so we can address it.
Please include a clear description, steps to reproduce, and any supporting evidence. A machine-readable contact is also published at /.well-known/security.txt.
We ask that you:
- Give us reasonable time to investigate and remediate before any public disclosure.
- Avoid privacy violations, data destruction, or service disruption during testing.
- Do not access or modify data that does not belong to you.
We will acknowledge valid reports, keep you informed of progress, and credit researchers who wish to be recognised.
Data protection
For how we handle personal data, see our Privacy Policy. For cookies and storage, see our Cookie Policy.