We'd be happy to see your technical deep-dive. To reiterate what was written in the OP, the site is built on Laravel. Your sensitive data is encrypted with AES-256, we also have the option for using PGP with the vendor, your sensitive data can be deleted anytime, and we are hosted on off-shore servers. Vendors can withdraws funds every 24 hours, so we are only capable of exit scamming 1 day of site revenue, this would be a net loss for us by far. Again, Brewly was founded by members of this very community.
While we launched on Meso today, we've actually been up for about a month refining things. We've already processed 5 figure amounts on Brewly across multiple vendors.