A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Canonical: http://dutch-biketours.it/.well-known/security.txt
Canonical: http://www.dutch-biketours.it/.well-known/security.txt
Canonical: http://service.intakt.com/securitytxt/generate.php?domain=dutch-biketours.it
Expires: 2027-01-01T03:46:09+00:00

# Please always try to contact us through our online form to speed up things.
Contact: https://www.intakt.com/security-en?lang=1
Contact: https://www.intakt.com/security
Contact: mailto:security@intakt.com

# This is the PGP public key that we use to sign our security.txt.
# Do *not* use it to send encrypted mails to us.
Encryption: dns:2591d67d64ef2e80cde67d27b6510e61eca0b5b7f220a30cbaf0bcf0._openpgpkey.sidnlabs.nl.

# We can offer a proper response in the following languages:
Preferred-Languages: nl, en

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEqahyzgSexcc91MEnGrJAcFBYxhUFAmlV7gEACgkQGrJAcFBY
xhVPvg/9E1NGsiIRmWa8ZJn0LkfLIvkMXfp6pCN7FeKJMuVSMiCkjyzyu2WSWwsq
c0NxlQxCLAd+LIdo2NzFbO066tBHk6YkTAi5CkwxQWXkoxFhCpB6+v17kuex+iqp
Co5K8uUwSOoVtS4EfUEFKJe4YFhQhj1uTJoF0cYS7TJxolnO2hNp9MbB1e9xuoO+
2XTGr+uXAwDBoV+Ep0fm/D27ZlDC3f/5NxA7iQhIGqsxzwp/RKhYtHC+JFZ51F6M
ZlBJ4U9QfTWgxe8e/JQnCQfG5G4YdJvwAQYTf8RzkzxdJIcoDSZRvNerqJXcKsB9
n4EWjNNVwj0EYr9neQyCkr40uQltwamBB5e569Kaz/VAmbhBoTYeGf2pFtkHg82a
4iVNoTi1p3gS4tjGp8G/TOAjgURWOpoIU35z5PQnIHO5vCDLFinI2ddPttOc/Foj
erxZbEgk27Sf5zakAuLMloh3zLQdgZCufGXT15LvxlDAEBYrFGcN+uzOa/9amVs/
3A4+NtEh3IKPuBvCYe8iUTtyjJj27HH5/jnWjE7v5C/zFCi7Mt+salOSw0p0tF94
vKNZ1mKtdjG+pZzPx5P4a+/eFPHNl5osoMdLiKvibaAHaIDjn7+tvSFtJvW7xDVb
gv/2Y0SzlBSPrJiQPtWQrxV56umK7WscY2ey077IoBKFq9wrg14=
=P3Un
-----END PGP SIGNATURE-----