ℍ𝕖𝕪 𝕥𝕙𝕖𝕣𝕖 𝕀'𝕞 [𝔸𝕒𝕣𝕠𝕟].

𝔸 𝕗𝕦𝕝𝕝 𝕤𝕥𝕒𝕔𝕜 𝔻𝕛𝕒𝕟𝕘𝕠 & ℝ𝕖𝕒𝕔𝕥 𝕨𝕖𝕓 𝕕𝕖𝕧𝕖𝕝𝕠𝕡𝕖𝕣, 𝕡𝕦𝕤𝕙𝕚𝕟𝕘 𝕥𝕙𝕖𝕚𝕣 𝕝𝕚𝕞𝕚𝕥𝕤 𝕕𝕒𝕚𝕝𝕪

I'm the founder of Futurum Labs, COO of ArtsYou, and lead builder behind the AY App – a construction management platform that tracks:

• 15+ data models (projects, budgets, invoices, purchase orders, change orders)
• 25+ role-based access controls (RBAC) – contractors, architects, suppliers, accountants
• Multi-currency ERP support – KES, USD, GBP, EUR, UGX, TZS, and more – without breaking reconciliation

Secure approval workflows + role-gated multi-signature logic + automated reconciliation. No more "finance is reviewing" for 6 weeks.

Real-time WebSocket dashboards – every stakeholder sees the same budget, same invoice status, same remaining balance. No more "which version of the spreadsheet is real?"

I deploy on RHEL (Red Hat Enterprise Linux) like an adult. Proper monitoring, automated backups, and staging/prod parity. Your pager stays quiet.

Every application I build or audit adheres to:

• OWASP Top 10 (A1–A10: injection, broken auth, crypto failures, logging, etc.)
• Local data protection legislation – Kenya DPA, GDPR, Uganda DPP, Tanzania PDP, etc.
• Role-based access control (RBAC) + audit logging for compliance
• Payment security – PCI-DSS readiness for card processing
• Secure file uploads (no malicious PDFs in your S3 bucket)

I don't just build features. I build applications that pass compliance audits on day one.

Because the ecosystem needs better tools, not more "we'll audit it later" excuses.

• django-rbac-audit – Role-based access control with tamper-proof audit logs for Django
• websocket-rate-limiter – Per-session WebSocket rate limiting (no more brute-force via WS)
• multi-currency-safe – Decimal-based currency handling that won't float-point your budget into oblivion
• django-audit-analytics-middleware – Auto-redact PII, log auth events, and block non-compliant requests

I write the packages I wish existed when I built AY App. They're MIT licensed. Go break them, then open an issue.

• B2B startups in construction, logistics, property tech, or fintech-adjacent spaces
• Scale-ups that have already felt the cost of a payment delay or a compliance near-miss
• Founders who want a product-minded engineer – not a ticket-pusher – who can talk to both the CTO and the foreman on site

Not a fit for:
Lifestyle MVPs, pure AI wrappers, or teams whose security plan is "we'll fix it after launch."

• AY App – live construction management platform handling multi-currency budgets across Kenya, Uganda, Tanzania, and EU project sites.
• ArtsYou – creative economy platform with secure payment escrow-like workflows.
• Futurum Labs – I build and secure applications for clients across Africa and Europe.
• Open Source – Security packages with 1k+ combined downloads (and counting)

If you're a startup or scale-up that wants security-first, product-minded development – and you're tired of devs who disappear after the merge request – let's connect.

I don't just write code. I build systems where money doesn't disappear, projects don't collapse, and compliance isn't a surprise.

Find me here:
aaron@futurumlabs.net • [Futurum Labs]

AY App is a sophisticated, full-stack construction project management platform designed specifically for the Kenyan construction industry. This enterprise-grade application streamlines collaboration between clients, project managers, consultants, contractors, and suppliers throughout the entire project lifecycle. Built with modern technologies and industry best practices, AY App represents a comprehensive solution to the complex challenges of construction project management in emerging markets.

The platform bridges critical gaps in construction project management by providing:

• Centralized collaboration for all stakeholders
• Real-time financial tracking across multiple currencies
• Compliance management with local regulations
• Scalable architecture that can grow with the business

Arts You Documents is a modular microservice that extends the Arts You project management platform with enterprise‑grade document automation. It transforms static company documents into intelligent, dynamic Jinja2 templates, allowing organisations to generate contracts, reports, and compliance forms in seconds – not days.

This add‑on is available for both new and existing Arts You users. Administrators can purchase the microservice as a separate module, after which their team provides the source documents (Word, PDF, etc.). The Arts You team converts each document into a Jinja2‑powered template, bundles it with a dynamic JSON form schema, and uploads everything into the organisation’s dedicated workspace.

Note: The library is continuously updated. Organisations can also request custom templates for a one‑time fee.

• Backend: Python Django (REST Framework) – separate service from the main Arts You monolith, communicating via authenticated API calls.
• Template Engine: Jinja2 + WeasyPrint / docxtpl for PDF rendering.
• Form Validation: JSON Schemas (draft‑07) validated using jsonschema on the server.
• Queue: Celery with Redis broker for asynchronous PDF generation and email sending.
• Storage: Generated PDFs stored in an S3‑compatible bucket (or locally with versioning).
• Frontend Integration: React components that consume the form schema and render dynamic forms (using react-jsonschema-form or similar).