Security and trust
AccessProof is built for technical accessibility assessment of public pages. We avoid claims about certifications we do not hold and focus on practical controls for beta users.
Public-page scanning only in v1; no authenticated scans
Private artifact storage for screenshots and generated reports
Signed report and artifact URLs where direct access is needed
SSRF protection for submitted URLs and redirects
Rate limiting and Turnstile abuse prevention
Payment handled by Lemon Squeezy or configured payment provider
Report access is account and organization scoped
Raw snippets are escaped before customer-facing rendering
Responsible disclosure
If you believe you found a security issue in AccessProof, contact [email protected] with a clear description and reproduction steps. Do not test against customer data or systems you do not control.