A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

## The security team appreciate your interest in the security of Jyske Bank. 

## Please use the below point of contact for security findings only, if you as a vendor/sales person contact us directly on this e-mail will we mark your e-mail as spam.

## Please send relevant information about your security findings to:

Contact: mailto:security@jyskebank.dk



## Please contact us in either Danish or English

Preferred-Languages: da, en



## Public encryption key can be share on request

Encryption: Shared on request to contact.



## Bug Bounty / Reward Statement

## -----------------------------

## Jyske Bank does not have a bug bounty/reward program and will therefore not offer paid bug/security rewards.

## We might however offer a token of our appreciation to security researchers who take the time and effort to 

## investigate and report security vulnerabilities to us.

##

## Best regards

## Jyske Bank Security



## This information is only valid until:

Expires: 2025-12-31T22:59:00.000Z