ACCOUNT_JOB_COMPANY

Responsible Disclosure Policy

Effective for:
Operated by: ACCOUNT_JOB_COMPANY (the "Company")

At the Company, the security of NAME_WEBSITE_SERVICE, our systems, and our users is a top priority. Despite continuous efforts to protect our NAME_WEBSITE_SERVICE, vulnerabilities may still occur.

If you believe you have discovered a security vulnerability affecting NAME_WEBSITE_SERVICE, we encourage you to report it responsibly so we can investigate and address it promptly.

This policy explains how to report vulnerabilities, what systems are in scope, and the expectations for responsible security research.

How to Report a Vulnerability

(a) Please submit vulnerability reports through one of the following channels:

VULNERABILITY_REPORT

(b) When submitting a report, please include:

• A description of the issue and where it is located along with screenshots.
• A description of the steps required to reproduce the issue.
• Any supporting materials

(c) Rules for finding security vulnerabilityes:

• Take responsibility and act with extreme care and caution.
• When investigating the matter, only use methods or techniques that are compliant with law and necessary in order to find or demonstrate the vulnerability

Scope

In Scope

The following are generally considered in scope :

• IN_SCOPE

Out of Scope

Unless explicitly authorized in writing, the following are out of scope:

• OUTSIDE_SCOPE

Responsible Testing Guidelines

Our Commitment

Questions

........................................