A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA512



Contact: mailto:informatiebeveiliging@s-bb.nl

Expires: 2026-02-11T00:00:00.000Z

Canonical: https://www.s-bb.nl/.well-known/security.txt

Encryption: https://www.s-bb.nl/.well-known/pgp.txt

Policy: https://www.s-bb.nl/contact/responsible-disclosure-policy/

Preferred-Languages: en, nl

-----BEGIN PGP SIGNATURE-----



iHUEARYKAB0WIQS2dzW7tgxSh22T6XCr+a+C8wjA7AUCZ6trKQAKCRCr+a+C8wjA

7M0/AP4/A8PmKdv+baOuw82V+LmdiOp/ras4EI1HhgXbgvy0uwD+L/oWMkZTqpdZ

QuKCgW4AWd7BtcoVx9actEKvLcQsHgs=

=t58j

-----END PGP SIGNATURE-----