Docbyte Responsible Disclosure Procedure
Docbyte considers the security of its systems a top priority. Our goal is to protect people’s privacy and information confidentiality. This means fixing vulnerabilities as soon as possible and encouraging people to tell us about any vulnerabilities they discover.
If you discover a vulnerability, we would like to know about it so we can take steps to address it as quickly as possible. Please help us better protect our systems and therefore our customers.
If you discover a vulnerability, please do the following:
E-mail your findings to email@example.com.
In the header of the mail, please provide the keywords “Responsible Disclosure” followed by the URL where you found the vulnerability.
In the body of the mail, please provide the following information:
We acknowledge receipt as soon as possible and within 7 working days we will provide you with an update on the progress of our investigation.
We will look at the reported vulnerability and work on it with our engineering team. We will notify you of what the investigation found and what we decided to do.
We aim to address all vulnerabilities as quickly as possible, but we might be reliant upon contracted external software suppliers.
If appropriate, we will handle this notification as a privacy breach and tell people whose personal information may have been disclosed as prescribed by the Docbyte GDPR Data Breach Management Procedure.
We will work with you if you want to publicly disclose finding the vulnerability.
Some types of behavior are not reasonable research approaches. Please do not try actions that can cause harm
If you act in good faith and follow this policy, we make these commitments to you:
We strive to resolve all problems as quickly as possible.
If you have any queries, or you would like to contact us directly: