A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Contact: mailto: servicedesk@bigagroep.nl
Contact: tel:+31308503231
Contact: https://www.bigagroep.nl/contact/

Preferred-Languages: nl, en

Expires: 2026-03-01T07:00:00Z
-----BEGIN PGP SIGNATURE-----
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=q5OH
-----END PGP SIGNATURE-----