We take your privacy and security very seriously and we strive to provide secure products and services. On top of our regular security audit, we recognize the work of the extensive security community and we appreciate any reports of possible security issues in a coordinated, constructive and transparent approach.
If you discover a vulnerability in our system or product, please report it to us as quickly as possible by sending a message to us via the "Submit A Request" button above. Please encrypt your message and its attachments using our PGP public key.
We do not offer financial rewards for reported security issues.
Our team will not take legal action against individuals who report vulnerabilities to us in accordance with this policy:
- The reporter will not disclose or publish the vulnerability until it has been fixed and before expiration of a mutually agreed timeframe.
- The reporter will not take advantage of the vulnerability; will not access, modify, delete or download other data without authorization and will not launch any type of attack based on this vulnerability against any subject.
- The reporter must abide by the laws of his/her location.
We will process all information submitted by you with confidentiality and we will not provide your personal details to third parties without your permission.