Trust & Security

slavin.org.il is the Slavin Internet Technologies brand — web + AI integration for Israeli mid-market enterprise. This page documents the trust posture of the property.

At-a-glance

Security Disclosure Active

RFC 9116 security.txt at /.well-known/security.txt. Coordinated disclosure to [email protected].

Observability Active

Sentry browser SDK Loader Script with full integration suite. Events route to slatech-sites project; crash-free session rate >99.9% rolling 30-day.

GDPR Compliant

DPA on request. Lead-form retention 24 months unless contracted otherwise. No third-party advertising trackers on lead pages.

Security Headers Active

HSTS (1y + preload), X-Content-Type-Options nosniff, X-Frame-Options SAMEORIGIN, X-Powered-By + X-AspNet-Version stripped.

CSP Report-Only

Content-Security-Policy in Report-Only mode with allowlist published in header.

Cookies Hardened

Secure; HttpOnly; SameSite=Lax session cookies. No advertising cookies.

Data Residency

European Union (Germany / Ireland) default. Per-engagement residency overrides documented in the engagement contract for Israeli enterprise clients with localization requirements.

Reporting a Vulnerability

  1. Email [email protected].
  2. Acknowledgment within 1 business day; triage within 5 business days.
  3. CVE assignment where applicable.

Independent Endpoints

Last updated: 2026-06-20 Operator: SLAtech LTD Brand: Slavin Internet Technologies Trust contact: [email protected]