Future1 Community logoFuture1 Community

Security & Responsible Disclosure

Last updated: May 15, 2026

Future1 Community takes the security of student, parent, school, and employer data seriously. This page describes how to reach our security team and the practices we follow.

Reporting a vulnerability

Email security@future1community.com or call 952-222-1304. Include the URL, steps to reproduce, and any proof-of-concept. We respond within 5 business days. Please do not publicly disclose issues before we've had a chance to remediate.

Machine-readable contact is published at /.well-known/security.txt.

Safe-harbor

Good-faith research that respects user privacy, avoids service disruption, and follows this policy will not result in legal action from Future1.

Practices

  • HTTPS / TLS enforced across the site, www and apex.
  • Authentication via Supabase Auth with hashed credentials and session rotation.
  • Row-level security on all user-data tables in our managed Postgres database.
  • Payments processed by Stripe; full card numbers never touch our servers.
  • Email authenticated with SPF, DKIM, and DMARC on future1community.com.
  • Continuous deployment with automated security scans before publish.

Blocklist & reputation

If a security vendor has flagged future1community.com, please contact us - we are happy to provide ownership verification, registrar records, and Stripe / business verification to support a false-positive review.

Business verification

Future1 Community
6417 Penn Ave S, Ste 7-1014, Minneapolis, MN 55423-1196
Phone: 952-222-1304
Domain registered through Lovable, hosted on Lovable Cloud (Cloudflare network), DNS managed at Lovable.