A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:security@igloonet.cz
Expires: 2024-03-31T13:00:00.000Z
Encryption: https://igloonet.cz/kepi.asc
Preferred-Languages: cs, en
Canonical: https://igloonet.cz/.well-known/security.txt

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEOlT2K9C7pIR5oAxE37gcojMxSfsFAmQmuIAACgkQ37gcojMx
Sfv5Zg/9HUHJ+bBgG00vACAYZJ4tuMOMhDbgYEhT74O3K47c8p3rvBHJoUQUJpcs
hO/qepIyfBScUF9adTTIUnuNddaBEM0PPHK1xuauqyn22Pao+sCYsF7FW41+0OuE
9jiWY8wYpylA1OKgv+FW3RVAKm25btog5mUZ/IOfyl3xXXgYGSrDz8KTqZJQpTRp
27cmDCB7YRKTwoERS6vuk/aeDBEcQ6oLfJzovWwHkcedMZrlAmXC2BG8t5kWHnwr
QAxCV4qXQfL/brUZ6/x05fK9826Y6zjrqT/l/oXaVhZdZlvovrQa5SB9bAuKICAD
vlexnyv+R5SnghToPvT+ENZtRT8b3k4N49jA3H/BkaSWULBjcrXENBcp19CskedO
wKkCByEiH8g2enrI4n15NI646J2RyYfsPSx5zTJ1NDU1ubS7RCkEI9mhLV4dZfIP
nRkvc3/0zIKzJ5jeGmcRAm0yZxa5t3J9562qiDBeURcrdPOFT+IEr2/2gSD0iuBK
S9iSv8NK7LHfisPvxBJi4B3hRUeq0UEfbffvkJQbcgaPnlnT1G68+OvXa9SXI2mW
AodgrG4KBHReu0GJ5gC/AdXlu/7DzW4HLu+NL0LgR7uL+AVgoaEJV1lJaj8krzrH
mGuuT1Gd9HSEZZq0K0JHCsdoUqNYqwUp9LwrLnAbn2swNDGxEa4=
=8ReQ
-----END PGP SIGNATURE-----