The following is an (incomplete) list of various wrongdoings and other confessions being made on behalf of deploys.io, by prior management. The primary person behind the majority of these points is Rihan (a.k.a CodeCo), but inevitably the blame falls on those who stood with him too:
- Numerous violations of both GDPR and ICO regulations that have gone unreported to those affected and intentionally hidden from appropriate agencies. For examples, see https://user-images.githubusercontent.com/29165304/65446632-a7ffd780-de2c-11e9-965d-82e9283094c6.png (An email was sent out but intentionally sent to spam inboxes, no agencies were reported).
- Overselling of up to 150% (and much higher in many cases) on shared and enterprise nodes.
- Orders continued to be accepted despite remaining management not having any type of access or control to the domain (deploys.io) and any associated emails. (Deploys.io Holdings Ltd. does not own any domains used for the company, including the primary one.) This resulted in, among many things, non-associated people having full access to all stripe notifications and emails, which all contain sensitive customer information. [Nobody was informed of this and orders via stripe and etc continued to be accepted]
- Complete lack of transparency and outright lies about certain outages. In many cases, outages were completely stoppable had hindsight been used, frequent censorship of complaints without consent or agreement of other members of management.
- Extremely poor security, including various severe well-known vulnerabilities that went ignored despite posing a real and practical risk. As this issue is **still** unresolved many months later, details have to be sparse to avoid someone exploiting it; but in short, due to a lack of proper/basic filtering, it is possible for any host on the same network within deploys to claim the space belonging to other clients or infrastructure. This is followed by refusals from CodeCo in particular to implement basic security protocols such as per-user authentication on key services such as proxmox for the sake of personal "convenience"; to name a few.
- The majority of the hardware offered/in use by deploys is not owned in full by Deploys.io Holdings Ltd. It is instead leased through a variety of lesser-known rental companies and many are under "LTO" (Lease to own) contracts which have the company pay for the server over time and own it after a period of time instead of buying outright. A *very* small portion of the hardware is owned, but the majority of hardware that falls into this category was funded in full or at least partially by a previous member of management.
- Perhaps most concerningly of all, the complete lack of change or signs of improvement from the main person behind the majority of these issues (CodeCo/Rihan) shows no sign of changing aside from empty promises made time and time again, only to be broken once more.
I do not make any claims of innocence in these actions, and understand that there are numerous items on this list that violate the trust of many. I do not ask for your forgiveness simply because I do not deserve it, all I can say is that I truly wish things ended differently... if it means anything; had it been up to me, none of this would have happened. - david#0101