Technical Proposal — Architecture & Stack
Recommended Stack
Based on our analysis of your requirements (performance, SEO, maintainability), we recommend:
| Layer | Technology | Why |
|---|---|---|
| Frontend | Next.js 15 (App Router) | Server components for SEO, React ecosystem, excellent DX |
| Styling | Tailwind CSS 4 | Rapid iteration, design-token-based, purges unused CSS |
| CMS | Payload CMS (headless) | Self-hosted, markdown support, REST + GraphQL API |
| Hosting | Vercel | Edge network, automatic previews, zero-config deploys |
| Chat | InboxAI (Cofoundy) | AI-powered lead capture, multi-channel, BANT qualification |
| Analytics | Plausible | Privacy-first, GDPR compliant, lightweight (< 1KB) |
Architecture
graph TB
subgraph "Client Browser"
UI[Next.js Frontend]
Chat[InboxAI Widget]
end
subgraph "Vercel Edge"
SSR[Server Components]
API[API Routes]
end
subgraph "Backend"
CMS[Payload CMS]
DB[(PostgreSQL)]
end
subgraph "Cofoundy Services"
Inbox[InboxAI Backend]
AI[Claude AI]
end
UI --> SSR
SSR --> CMS
CMS --> DB
Chat --> Inbox
Inbox --> AI
API --> CMSPerformance Budget
| Resource | Budget | Strategy |
|---|---|---|
| JavaScript | < 150 KB | Code splitting, tree shaking, dynamic imports |
| CSS | < 30 KB | Tailwind purge, critical CSS inlining |
| Images | < 500 KB/page | Next.js Image optimization, WebP/AVIF, lazy loading |
| Fonts | < 80 KB | Variable fonts, font-display: swap, preload |
| Total page weight | < 800 KB | Target: Lighthouse 95+ |
Security Measures
- HTTPS everywhere — enforced via Vercel + HSTS headers
- CSP headers — strict Content Security Policy
- Input sanitization — all CMS inputs validated server-side
- Rate limiting — API routes protected (100 req/min/IP)
- Dependency auditing — automated via GitHub Dependabot
Delivery Approach
We work in weekly sprints with visible progress:
- Week 1-2: Design phase — wireframes → visual mockups → client approval
- Week 3-4: Build phase — frontend + CMS, deployed to preview URL daily
- Week 5: Integration — chat widget, analytics, SEO
- Week 6: QA + launch — testing, UAT, go-live
You’ll have access to a live preview URL from day 1 of development, updated with every change.
Review this proposal and let us know if you’d like to discuss any technical decisions. We’re flexible on the stack — these are recommendations, not requirements.