A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Contact: mailto:bugbounty@sumup.com Expires: 2035-07-16T16:00:00.000Z Encryption: https://www.sumup.com/pub-key.pgp Preferred-Languages: en Canonical: https://www.sumup.com/.well-known/security.txt Canonical: https://api.sumup.com/.well-known/security.txt Canonical: https://auth.sumup.com/.well-known/security.txt Canonical: https://developer.sumup.com/.well-known/security.txt Policy: https://www.sumup.com/bug-bounty-program/ Policy: https://hackerone.com/sumup Hiring: https://www.sumup.com/careers/ -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEGu8VY7VHDIrIWYOk9/oAQefPxKwFAmh30lkACgkQ9/oAQefP xKzYBRAA1pgMuuqHu1ftTazBcnFcMhjHOtcjV1Sgaq9yby99SUyo5xm4q62XEQ5Y L75BsbNwgqp97U80AY9nGQqYddGlGx4XUM4ENOCc/+BC6Y1cKcMTIWeTF4Poy0Rd E5wR6TuMFDLI62uzSA/oBdGfEnq7LnK3czvaWN1bo9/IZXQhiLTBIzhXBMgrsDWW C+/TJKBRyMtHSVglLAKMINLx3Lym11WnW/4PAz1XKeqNDdQ791HeRSm0Jnjate1V oYHnQchs1xnITeZyGUVfG/cxoGxqce++9ZSJGairPXbBJycNv5cW8S2H0e4YniCn bX96N6EhaMxenDqH0xH94LOHChISrzbSS43aEd5W1X2omwnGt6VP7xKeFfjPUOBX iJvhHvrFZEnwZrjNvXBb+jchhnfbdbBTEX8O3nsrVo++Bpw809HxuMzTpgkOjA/a j0Ba+K+DBzLvlhYq70FFTqVeoBeSQzluiCsgn0P3Sb9ji0X7W7y1J2EPn5sQ/F6Y 2TIDyZMBuqbMmN/B9T3qRb8q46vHULp3c10LmQBqlxG6sCtTmgvbh/Hyt2ai3/1+ NebtloQiaUUpNYfeQEOix/C/vkV3uOa3/zDp68brarFhmXBzrtT3/yFdDznYWPmi Pz9xnLC4ZVF5F+tPwDIsqFinMOswhA684LCdmXGUycRhV/GV6yI= =O33l -----END PGP SIGNATURE-----
This policy crawled by Onyphe on the 2025-10-13 is sorted as securitytxt.
FireBounty © 2015-2025