Security.
Last updated 29 June 2026
We’d rather hear from you than not. If you find a weakness, tell us.
This website is static and collects only what you send us through the contact form, with cookieless, self-hosted analytics and no third-party trackers (see Privacy), so there is little here to attack. Access to the systems behind our work is restricted, and any action our live agent takes that has real-world consequences passes through a human first. That is the standard every agent we build has to meet.
Reporting a vulnerability
If you find a security issue (in this site or anything we run) email hello@bunbunlabs.com with what you found and how to reproduce it. Please don’t access or change data that isn’t yours, and give us a reasonable chance to fix the issue before you make it public. We’ll work with you in good faith, and we won’t pursue anyone who reports a genuine issue responsibly.
What we don’t claim
We don’t hold formal security certifications yet, and we won’t claim ones we don’t have. A fuller security program is being built; this page will say what’s true as it grows.