A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

# Security.txt voor franklin-art-photography.nl
# Conform RFC 9116

Contact: mailto:info@franklin-art-photography.nl
Expires: 2026-03-18T06:25:22Z
Canonical: https://franklin-art-photography.nl/.well-known/security.txt
Canonical: https://www.franklin-art-photography.nl/.well-known/security.txt
Policy: https://franklin-art-photography.nl
Encryption: https://franklin-art-photography.nl/.well-known/pgp-key.txt
Preferred-Languages: nl, en
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (GNU/Linux)

iQEcBAEBAgAGBQJoeejSAAoJEDk9iw8ctexnov0H/3rnExISslSwe8x3a9EpbQ9a
HgTeFHotTp5GA919u9K0iLG0ocfUrecnJR7sdubmZGIMQd9iZzOXtToJo62zWCBG
ZckYhIzTO/FfadNohqTYYTxFESA3135i9ob7HHlDap0lwo0mL6AlGc0iNLa82/yz
Kz4dg58uTWfriLmiSSTmHKByf2Ksk8qR/FIu9yvMWRuGen2/T/xW3oWoG5tkpvUb
d1jiI1Ijl7WHwX4/2N9sTl6ugn+OFIdhKSirZjcjcQqAXnEspEVQjkF7oIt/c73f
iBvjM/olDULuvov//xUf9l+shQsU1vUaKsrqwEKgnQUxXa8Td8n1jx6QPNJTbHA=
=xFBb
-----END PGP SIGNATURE-----