Introduction
Our webservices are committed to maintaining the security and privacy of our users. We recognise the importance of receiving reports about potential vulnerabilities and appreciate the efforts of the security community in helping us to ensure the safety of our digital environment.
Scope
This policy applies to any security vulnerability or issue that affects the confidentiality, integrity, or availability of our webservices and user data.
Reporting a Vulnerability
- Email your findings to our security team at info@wedlakebell.com.
- Include detailed information about the vulnerability, including steps to reproduce and potential impact.
- Do not disclose the vulnerability publicly until we have had an opportunity to investigate and address it.
Our Commitment
- Acknowledge receipt of your report within 7 business days.
- Investigate the issue thoroughly and as quickly as possible.
- Provide an estimated timeline for remediation.
- Keep you informed of the progress and status of your report.
- Credit your contribution in our security advisories, should you so desire.
Safe Harbor
We are committed to engaging with security researchers in a constructive and respectful manner. If you adhere to this policy, we will:
- Not take legal action against you.
- Work with you to understand and resolve the issue promptly.
Guidelines for Reporting
We ask that you:
- Avoid exploiting the vulnerability beyond what is necessary to confirm its existence.
- Refrain from accessing, altering, or deleting any data.
- Respect our users’ privacy and do not access personal information.
Conclusion
We value the contributions of the security community and are committed to working together to create a safer digital environment. Thank you for helping us in our mission to protect our users.
While we do not operate a public bug bounty program, we may choose to recognise exceptional contributions at our discretion.