A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Contact: mailto:info@d-hosting.nl
# OpenPGP key
Encryption: https://www.d-hosting.nl/.well-known/pgp-publickey.txt

Expires: 2026-08-15T23:07:22.17Z
Canonical: https://www.d-hosting.nl/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----

iQJGBAEBCgAwFiEEQwUvSOeK4mOm0UlAYjKmAc7NXkkFAmie5OwSHGluZm9AZC1o
b3N0aW5nLm5sAAoJEGIypgHOzV5Jx6oQALA28KLhQZsJacTKHBIuaTZon0JQdQka
lvHluev/TR7ztJYSXeRoh7N0h0658kl2qBCixdWxLvoscjO8D1sWJ5jW7j62+NHE
HmN9UtjwBddwW6LxlotguGcKFWF23i8OU8hiaCErmntVMmyxneg2KNNCjHhetQDN
qozhYMI3IiJDWJmHcVi+AaXo2xhNnfYszzauUb989s/CQ0UJzksiJ6L1jBmEgCst
uIYRLXq7nS+WbhDCRP/1jvsVhDQ+bYn2rcnRIByFWK444yocGQzKHcmnB31R/mln
lUwMDaI8KUDDRdbVcy6V010Uyoaf/GQNClu37pSHC4HBHwJiVcQ2/tLEgwNw4EdG
5QyHGChMHXE3LGyNSrp1d2tkPBMT938vPwe3zrSBY4NFmUw5yX/X3vQoL8pycUhH
aApk8IVgEmNt253x1M58dxf/0l3kcpymOLdC9MJvrr/6JZNr+B5ggjrASxWbGF2n
wHGFFotz9w+C9Nzpt2e17fIzkoCCxUpRPLiGZhHbCywI80/XTT1jXZxvRUmHNd7z
q3NDxW+2ATe0FaXjkt1kmPoVv4rxPGPLHyGbNTXfFoD7JFYlxU9hu7HJdEm93EmA
Vaz7Mc+8ZhBBS+NNCkqGsPl1sz5gUdJVCsuQio0ncsbh/I52Z91GaFocMzC5keEW
CFWFKExQcuEf
=I41g
-----END PGP SIGNATURE-----