A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Contact: mailto:soc@wise.com
Contact: https://wise.com/responsible-disclosure
Encryption: openpgp4fpr:B4BFF5A9C399F5CBF0B74480130CED2469116CC5
Acknowledgments: https://bugcrowd.com/wise/hall-of-fame
Preferred-Languages: en, et
Canonical: https://wise.com/.well-known/security.txt
Policy: https://bugcrowd.com/wise
Hiring: https://wise.jobs/
-----BEGIN PGP SIGNATURE-----
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=8Nuf
-----END PGP SIGNATURE-----