A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

# Security.txt voor 123-hosting-server.net
# Conform RFC 9116

Contact: mailto:info@123-hosting-server.net
Expires: 2026-03-18T06:16:14Z
Canonical: https://123-hosting-server.net/.well-known/security.txt
Canonical: https://www.123-hosting-server.net/.well-known/security.txt
Policy: https://123-hosting-server.net
Encryption: https://123-hosting-server.net/.well-known/pgp-key.txt
Preferred-Languages: nl, en
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEEDlfSr+c91/jphcderSRpB1TuWawFAmh55q4ACgkQrSRpB1Tu
WayuKAf/eLHzy8TwIhDRHrqviHiy2smk0WoRGAkVpJsTjNTLIsurZFMxG7QjRuhJ
09mNd+Qde7juBVpyz4BQvfuK7Wb0vMkIerDoqUNj1JHzL2iltiFWXjaxeCHByuPh
Ftzv6OVY73bQWBjbxptECGSwViJRkbAfdhoi6ElvY+wVtkfBbg1h5JZROjU5gbjG
YoCt7G+1PxIv0jq3C0nS9/aSLDXm8yJQQcc0RGaI+6aK/bQttTHhjINQ1KeqMDBT
2wVAYTwZetnEtWnpyc5FGRuHlTzPfBfoAIUnF7zmljmCz31RbMkXcmoKxA5Elhc9
+ZuoppVmr7fPB5N0KVgy0Mmkjy7M8g==
=k0c2
-----END PGP SIGNATURE-----