A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Canonical: https://gks.nl/.well-known/security.txt
Encryption: https://gks.nl/public.pgp
Contact: https://gks.nl/contact/
Expires: 2025-12-02T11:22:00Z
Hiring: https://gks.nl/werken-bij/ 
Preferred-Languages: nl, en
-----BEGIN PGP SIGNATURE-----
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=WqnQ
-----END PGP SIGNATURE-----