Security Overview

Last updated: March 2026

Website Architecture

The Pierce Power Consulting website (piercepowerconsulting.com) is a static site composed entirely of HTML, CSS, and client-side JavaScript. It is hosted on a managed static hosting platform. There is no server-side application layer, no database, and no custom back-end infrastructure.

Transport Security

• All traffic is served exclusively over HTTPS with automatic certificate management.
• HTTPS is enforced across all pages; insecure requests are upgraded automatically.

Access Controls

The site is published from an access-controlled source repository. Repository access is limited to authorized personnel. There is no public write access to the site's source code.

Data Collection

The website does not currently employ server-side form processing, analytics tracking, or any mechanism that automatically stores visitor data. The contact form is present on the site but does not transmit data to a third-party endpoint at this time. For details on what data the contact form is designed to collect and how it is handled, see our Data Handling page.

Third-Party Services

The site loads fonts from Google Fonts (fonts.googleapis.com / fonts.gstatic.com) to render typography. No third-party analytics, advertising, or session-recording scripts are loaded. For a complete list, see our Third-Party Services section.

Vulnerability Reporting

If you discover a security vulnerability in this website or any PPC-managed digital asset, please report it responsibly. We review all reports and will acknowledge receipt within three business days. Full details are on our Responsible Disclosure page. A machine-readable security.txt file is also available.

Contact

For security-related inquiries, email info@PiercePowerConsulting.com with “Security” in the subject line. For general information about how we handle incidents, see our Incident Response page.