A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:so@notonpaper.nl
Expires: 2028-03-09T23:00:00.000Z
Canonical: https://romar-voss-floorsystems.nl/.well-known/security.txt
Encryption: https://romar-voss-floorsystems.nl/gpg.asc

-----BEGIN PGP SIGNATURE-----
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=hhS5
-----END PGP SIGNATURE-----