Kevin Kulik
Technical Partner for Healthcare · Ennepetal, Germany
Security person who builds websites. Not the other way around.
It started with reverse engineering and malware analysis. As a teenager, out of curiosity. I taught myself from there and got active in the InfoSec community around 2012.
Web development came through a detour: a project with Game Quitters, the largest online community for gaming addiction. From Elementor to Bricks Builder to SvelteKit, Astro, and FastAPI: all self-taught, all in production. I registered the business in 2021, and Kindbridge Health became the first major project, including monthly HIPAA compliance audits.
Today the circle is closed: 80% of my work is consulting, audits, and security, not web design. Websites are part of it, but the core is technical responsibility. I'm the one point of contact for organizations that don't have an in-house IT person but desperately need one.
How I work.
No commissions
I don't recommend tools or hosting providers I earn from. If I recommend something, it's because it's the best fit.
No vendor lock-in
Your website, your code, your data. After the minimum term, you own the source code and can switch anytime.
Honest about limits
If something isn't my area of expertise, I'll say so. I'd rather turn down work than deliver it poorly.
Compliance is standard
Privacy and accessibility aren't add-on packages in my work. I account for both from the start.
Security comes first
If I find a security issue while I'm working on your setup, I flag it directly. Early, clearly, and without sugarcoating it.
You have a problem. I look into it and tell you what's actually going on.
Most clients come through referrals, because someone said: "Talk to Kevin." Here's what typically brings them to me:
Worried your website isn't actually HIPAA-compliant?
I look at the code, not just the compliance badge. Tracking scripts, form handling, hosting, third-party integrations. All of it.
Security vulnerabilities in your tech stack?
I find them before someone else does. Monthly audits, vendor code reviews, and clear reports you can act on.
No one on your team who handles the technical side?
That's where I come in. I look at what's getting messy, sort it out, and tell you what actually matters first. One point of contact for the website, hosting, security, and the parts in between.
Patients can't find you online?
I fix the technical reasons: indexing issues, site speed, structured data that helps search engines understand what you do.