A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: https://registraid.com/who-we-are.html
Expires: 2026-02-26T23:00:00.000Z
Canonical: https://hoe-zo.registraid.com/.well-known/security.txt
Encryption: https://hoe-zo.registraid.com/gpg.asc
-----BEGIN PGP SIGNATURE-----

iIoEABYKADIWIQReoXSeU+HtvtEgA2Mj81Ix3CxRoAUCZ8IEvxQcZC5odWlzbWFu
QGhvZS16by5ubAAKCRAj81Ix3CxRoG/3AQDvCsxwfu4KtagbkCzwSPJrbIzm4lte
0fJRuIr46kv2mQD8DwXhDV8gw3qaER/35/EVaycziYJ5YKjXos4x1w/83wU=
=vEKc
-----END PGP SIGNATURE-----