Responsible disclosure
We are happy to work with you on responsible disclosure to properly protect all our internet activities for our clients and ourselves. Precisely because we specialise in custom software, security is a top priority for us. Despite our constant care for security, it is possible that a vulnerability arises. If you come across such a vulnerability, please let us know so that we can solve the problem as quickly as possible.
This is what we ask of you
- Email your findings to security-alert@infosupport.com, with information to reproduce the problem. This will help us resolve it.
- Do not collect more data than is strictly necessary to demonstrate the security issue to us.
- Do not share information about the security issue with others.
- Do not misuse the information you receive, regardless of whether you access, delete or modify data (in the system).
- We expect you to delete all data obtained immediately after the problem is solved.
This is our promise to you
- We will treat your report with integrity and confidentiality.
- We will not share your personal details with any third party without your consent, except as necessary to comply with statutory obligations of with a view to responsible disclosure.
- We will respond to your report within three working days, share our findings with you and keep you updated on the progress of the issue.
- Info Support does not have a bug bounty programme.