Synapsia Logo
Home Β» Services Β» Business Websites Β» Security & Privacy
Security Overview

Security & Privacy

We build your site with security and data protection in mind — using industry standards and practical safeguards that just work.

Secure by Default

All websites we deliver are HTTPS-secured and protected with strong browser headers. We also include spam protection to reduce abuse without bothering real users.

  • πŸ”’ HTTPS encryption with a free SSL certificate (Let's Encrypt)
  • 🧱 Security headers like CSP, Referrer-Policy, X-Content-Type-Options
  • πŸ•΅οΈβ€β™€οΈ Spam protection via reCAPTCHA v2 (invisible or checkbox)
  • πŸ“‘ HSTS header to force secure HTTPS connections
HTTPS and SSL Security
Privacy-Aware Forms

Privacy-Aware Contact Forms

Your contact forms won’t include tracking scripts or hidden fields. Messages are sent securely, and we don’t store user data unless explicitly configured.

Our contact forms are designed for trust and performance. We use honeypots and reCAPTCHA to block bots, while respecting your visitors' privacy. No fingerprinting scripts, no excessive tracking β€” just secure communication by default.

  • πŸ‘» Honeypot fields to silently detect bots
  • πŸ€– Google reCAPTCHA v2 (checkbox or invisible)
  • πŸ“§ Emails sent securely over TLS, with optional message encryption if needed
  • πŸ—‘οΈ Form data not stored unless explicitly configured

Safe Email Delivery

We configure your domain to prevent spoofing and improve deliverability β€” using SPF, DKIM, and DMARC where supported.

  • πŸ“¬ SPF and DKIM DNS setup for your domain
  • βœ… DMARC policy assistance to avoid spoofing
  • πŸ›‘οΈ Emails signed and authenticated where possible
Authenticated Email
Custom SSL Certificates

Custom SSL Certificates

Our standard SSL (via Let's Encrypt) is fine for most business sites, but if you need more visibility, branding, or trust indicators β€” we can install custom certificates to suit your needs.

🌐 Wildcard Certificates

Cover all subdomains under your domain (e.g. *.yourdomain.com)

🏒 OV (Organisation Validated)

Verify your business identity for added trust

πŸ”’ EV (Extended Validation)

Displays your company name in the browser certificate details (ideal for financial or legal sites)

You can supply your own certificate, or we can manage the purchase and setup for you.

Enhanced reCAPTCHA

For public-facing platforms or high-traffic forms, we can upgrade your protection to reCAPTCHA Enterprise β€” with adaptive risk detection.

  • πŸ€– Upgrade to reCAPTCHA Enterprise (billing required)
  • πŸ” Dynamic challenge levels and risk scoring
reCAPTCHA Enterprise
Advanced Headers and CSP

Advanced Header Policies

We can fine-tune browser security policies for stricter compliance β€” including nonce-based CSP, hardening for Stripe/YouTube embeds, and regulatory header requirements.

  • 🧾 Nonce-based CSP for inline scripts
  • πŸ› οΈ Customised header profiles
  • πŸ“¦ Third-party script hardening

Want Help Securing Your Site?

Whether you're launching something new or want a second opinion on an existing setup, we can help.

Security & Privacy

We build your site with security and data protection in mind — using industry standards and practical safeguards that just work.