A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

# Do *not* use this security.txt unmodified on your own website!

# Please always try to contact us through our responsible disclosure form
# to speed up things. Should that not be an option, then in order of
# preference the ways to contact us are:
Contact: https://security.ispweb.nl/contact
Contact: tel:+31735430400

Expires: 2026-08-23T00:03:08.000Z
Canonical: https://redirect.ispweb.nl/.well-known/security.txt
Encryption: https://security.ispweb.nl/gpg.asc

# We can offer you a swift and proper response in the following languages:
Preferred-Languages: nl, en

-----BEGIN PGP SIGNATURE-----

iQFGBAABCAAwFiEEmAgAuaIi1/FQAWQp78/HnQWeH0MFAmiqOp4SHHN1cHBvcnRA
aXNwd2ViLm5sAAoJEO/Px50Fnh9D3R4IALFDC3ysN59J4HZxDVgKejx+wzotZ088
44WkWiAJ6MxpOh51RTJEWYFrOQ1APde2zDtvyqpACGK/HgS4BgaPjlID6p7hNqbN
dxGTRSQ5oCRxWQCL/ro6hDtk/cA3PvUC1zx3QU8boQIZO+lx/Sfc6S2av7UjXsk+
yQ0qKWmTMVyu/IiEb5GsrzLXwGhrJydvogvAh5KCy5L1xxpQ2UYV0MpIWxCzqLNR
Flm02oSIjfYBWPLlVNVpRilsbL+TZQ9q/2oN7C1WqSfnM7MGfir0BM7/X6ploAD/
lwt80ExWmNaQeVqPbFkbAdbjsJDLGDnF9rPr8c9A+R2lThbiHleyjpQ=
=wObb
-----END PGP SIGNATURE-----