Kevin Kulik
Technical Partner for SMBs · Ennepetal, Germany
I look at what you have and figure out what's actually going on.
It started with reverse engineering and malware analysis. As a teenager, out of curiosity. I taught myself from there and got active in the InfoSec community around 2012.
Web development came through a detour: a project with Game Quitters, a large online community around gaming addiction. From WordPress to SvelteKit, Astro and FastAPI: all self-taught, all in production. I registered the business in 2021, and Kindbridge Health became the first large project — including ongoing technical and compliance-adjacent audits.
Today the centre of the work is technical responsibility rather than web design. Look in, sort it out, get it solved. Websites are part of that, but most of the time it starts with a completely different question.
How I work.
No commissions
I don't recommend tools or hosting providers I earn from. If I recommend something, it's because it's the best fit.
No vendor lock-in
Your website, your code, your data. After the minimum term, you own the source code and can switch anytime.
Honest about limits
If something isn't my area of expertise, I'll say so. I'd rather turn down work than deliver it poorly.
Clean delivery is standard
Privacy, accessibility and technical care are part of clean delivery for me. Larger audits or special topics remain their own scope of work.
Security comes first
If a security issue shows up during an active review or maintenance scope, I flag it directly. Early, clearly, and without sugarcoating it.
You have a problem. I look into it and tell you what's actually going on.
Most clients come through referrals, because someone said: "Talk to Kevin." Here's what usually brings them in:
Site hacked or malware on it?
I find the cause, clean it up and harden the site. When it's urgent, I respond fast.
Nobody finding you on Google?
I check why, work through the technical reasons and tell you which fixes realistically move visibility first.
Not sure whether tracking, forms or hosting are GDPR-clean?
I look at the code, not just the cookie banner. Tracking, forms, hosting — all of it.
Technical chaos and no IT person on the team?
Then I take a look at what's going sideways, sort it out and tell you what actually matters first. One point of contact for the website, hosting, security, and the parts in between.