A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA256



Contact: mailto:security@afas.nl

Expires: 2025-01-01T00:00:00.000Z

Encryption: https://www.afas.nl/publickey.txt

Preferred-Languages: nl, en

Canonical: https://www.afas.nl/.well-known/security.txt

Canonical: https://www.afas.be/.well-known/security.txt

Canonical: https://www.afas.com/.well-known/security.txt

Canonical: https://login.afasonline.com/.well-known/security.txt

Canonical: https://idp.afasonline.com/.well-known/security.txt

Policy: https://www.afas.nl/portal-bedrijfspagina/responsible-disclosure

Hiring: https://www.werkenbijafas.nl/

-----BEGIN PGP SIGNATURE-----



wsFzBAEBCAAnBYJllDTNCZBsDZIdA5rVMxYhBAf9rJUWRAgECKBmvGwNkh0D

mtUzAAC8RA/+K0C4CfNuN6krOBQ1NBk45VTOvOoSyjlMs40JbRZJ1C4xS1ti

eiDN8zn0lMaAkJ8enqq4iyWj2NISURV1zwCsqui9mmvQNV6G5nGw2tgUoBDC

vFXxX99+B19qZS/HlQ2YZTsHAUA7xWxbcbm9ETewLsJnx6Yygrix0NaU2M3E

mcfkxCh5wm9JVet2j/0bo4pi2JyOCc9ULUJcBF2jYp6OpOoGwr/edSTbLOA3

321uwUWrmgTkSA0f0pbsHJ2HXHgc+3l7wPMFawY+eEYi0TwkZ4lxufaFcNNi

uuVyoNyfCEvU1MwnrAgfO9/DIaNibsQcppUJmlEkyRA4wJwhyFChv+ZzqhPY

jZzYbwn9jjWfQ7jKP9oQxVqzqpw+zyJGqa+jA9G3Q0ObzYDsnF3ruEuR+8Bh

VTTW6EEqbC7LFhELb5anIhEIjOEdk8V5/ZpW8WIqLUWa7d5hbNq5CRP/m5lg

dCpcyOdRUD27UZEWQtBmZ0yRiSgsEoigWLqZMcZDz4zpqQ2V4+HcxZVcB0Pk

YCtw7xVaZc+YZ4Pn3omo/Mgs2Ohbiu06PSo+WGaRtijJsp8NifR5G1qLEi9T

chwgVkM1K7igfNjZDwUH9SCxQVY6+Esk0oHVHQ8Szei0+P3dDp8zqzzz2gUA

XXubnUgrRu+W0g/j/SnjjLzO5OSPLZ7rkJA=

=LEDv

-----END PGP SIGNATURE-----