Vulnerability Disclosure Policy
We are committed to maintaining the security of our systems and welcome the responsible disclosure of potential vulnerabilities. Please follow the guidelines below when reporting vulnerabilities to us:
- Report Submission: Send vulnerability reports to security@wearedoop.com, including as much detail as possible, such as steps to reproduce the issue.
- Response Time: We aim to acknowledge reports within 72 hours and will keep you updated as we investigate.
- Remediation Timeline: We aim to resolve all reported vulnerabilities within 30 days. If resolution is complex, we will communicate updates during the process.
- Public Disclosure: We will work with you to coordinate public disclosure of the vulnerability once a fix has been implemented.
Safe Harbor:
We value your efforts to help us improve our security. If you follow the guidelines above, we commit to not pursuing legal action against you. Please:
- Do not access or modify data that does not belong to you.
- Do not cause any service disruption or harm to other users.
- Report vulnerabilities directly to us in a responsible manner.