A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Contact: mailto:security@vantiva.com
Expires: 2025-12-02T10:30:00.000Z
Encryption: https://www.vantiva.com/.well-known/pubkey.txt
Preferred-Languages: en, fr
Canonical: https://www.vantiva.com/.well-known/security.txt
Policy: https://www.vantiva.com/privacy-policy
Hiring: https://www.vantiva.com/jobs/
-----BEGIN PGP SIGNATURE-----
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=8nI1
-----END PGP SIGNATURE-----