Site Audit

Launch readiness checklist.

This page records what is present on the public site and what still needs external business, legal or platform setup.

Completed on the site

  • Static HTML pages with inline CSS
  • No external CSS framework
  • No JavaScript bundle
  • Logo alt text and fixed image dimensions
  • Favicon and Apple touch icon
  • Privacy, Terms and Cookie pages
  • Cookie notice for local preference storage
  • Back-to-top link
  • Sitemap and robots.txt
  • Responsible disclosure page
  • Serverless demo form endpoint
  • Honeypot spam field

Still missing outside the site

  • RESEND_API_KEY on Vercel for the demo form
  • Verified sender/domain in Resend for hello@constalock.com
  • FORM_TO_EMAIL and FORM_FROM_EMAIL Vercel env vars if defaults need changing
  • Final legal review of Privacy and Terms
  • Registered company details, trading address and company number if applicable
  • Named data controller or privacy contact if different from hello@constalock.com
  • Google Search Console verification
  • Google Analytics or another analytics tool, if wanted
  • Cookie consent upgrade if analytics, ads or tracking pixels are added
  • Google OAuth configuration, if login is added later
  • Status page, SLA and support process if customers depend on the service
  • Production security documentation and customer-facing subprocessors list

Performance note

The public marketing site remains mostly static. The demo form uses one serverless POST only when someone submits the form, so normal page loading stays lean.

Top