Back to blogLast updated June 2026
Trust & Privacy

Trust, Security & Privacy

This page is maintained by the 7CTOs team to answer common security and privacy questions about this community blog. It describes the controls currently in place and is not an independent certification or audit.

What this app does

The 7CTOs blog republishes articles from 7ctos.com and lets community members submit posts for editorial review. Anyone can read published posts. Members can submit a post through the public submission form; an administrator reviews each submission before anything is published.

Access & authentication

Editorial and administrative actions are protected behind authenticated sign-in. Roles are stored server-side and checked through a privileged database function so role membership cannot be set or escalated from the browser. Approval links sent over email are signed with a server-only secret and verified before any publish action runs.

Data we collect

When you submit a post we store the name, email, category, title, and content you provide so an administrator can review and publish it. When you sign in to the admin area we store the account identifier and profile information needed to authenticate you. We do not sell personal data and we do not use it for advertising.

Published posts are mirrored to the public 7ctos.com WordPress site. Anything you submit for publication should be treated as content you intend to publish publicly.

Content handling & safety

Submission inputs are validated on the server with strict length and format limits before they reach the database. HTML content from WordPress and AI-formatted drafts is sanitized with a strict tag allowlist before it is rendered in any reader's browser. Submissions cannot be self-published; a human administrator must approve each one.

Subprocessors & integrations

We rely on a small number of service providers to run this app: a managed Postgres database and authentication provider, a serverless hosting provider, an AI gateway used to suggest editorial formatting for submissions, an email provider used to deliver approval notifications to administrators, and the 7ctos.com WordPress site where approved posts are published.

Reporting a security issue

If you believe you have found a security or privacy issue, please contact the 7CTOs team through 7ctos.com so we can investigate and respond. Please do not publicly disclose the issue until we have had a reasonable opportunity to address it.

This page describes current practices and may be updated as the app evolves. It is not a legal contract, certification, or guarantee.