A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

# Canonical URL
Canonical: https://beheervanict.nl/.well-known/security.txt

# Our security address
Contact: https://daxis-ict.nl/meld-kwetsbaarheid/
Contact: https://daxis-ict.nl/report-vulnerability/

# Our security policy
Policy: https://daxis-ict.nl/meld-kwetsbaarheid/#policy
Policy: https://daxis-ict.nl/report-vulnerability/#policy

# Hall of fame
Acknowledgments: https://daxis-ict.nl/hall-of-fame/

# These are the languages we speak
Preferred-Languages: nl,en

# Our OpenPGP key
Encryption: https://daxis-ict.nl/meld-kwetsbaarheid/
Encryption: https://daxis-ict.nl/report-vulnerability/
Encryption: openpgp4fpr:811100944C94E98784B291AC6C447AC1825F7655

# You shouldn't trust this file, once it has expired (like bad milk)
Expires: 2024-03-16T01:07:31Z

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEgREAlEyU6YeEspGsbER6wYJfdlUFAmQSa9MACgkQbER6wYJf
dlUVvhAAnJxOJMm3whbz9Z+o8GBCB97WzbaAD/JYvjQwoAi8BzM9UerzglWZ5Yjn
CCmzAAS23Ou4vSJ81SNShY80TgoYzCQbFntIkHGN+30AmWQ5GyjGFtjdbP7xjII5
33qE6XktE+DHEr7RN9GZmF3jQ4ZLO8q6xuz42Dyh/4OHqLlVR8977x0UhCSPxt9+
3idpEMmH/mCrsgMmGcZ0O4HBAxQKhMnkXfLpxV1Aml05XmG09nFVLOGz/jekNDBM
RhxyzVaisF7PEKUoatU8eox67Yhi7G32fRtdm/mlmjDYUsMuVlLmyiQm9QvTkouw
4HZ5ABZZEaFBN98rMTGcdAK99tv9d/rQIjNAhHgJct4vjLq1179kT+NtylARPIZ0
IGHBHIWKdz4pFZJrxmFU5UuSfIXs8NLdMPZgHOqxJLt6OlVrh2LdanbdZtRH1NJG
oS13PHScyUsEMl1JJ7ujrVJushZbwI0XUPGAOqn53cKg4QiEQoNnj7uS3Wp2QtU+
93Flq3a0rIT5j5i3a8+a7IX2877nJGLPa2I/utaIdF3YpOycXoZB2F7ZkWheUpcg
mi115xIfQe17A6V2JImuSpWvHal63PyHrYPwcgkXJK2tIZ9WKdM817JG5X+Em6lO
oyl1fUxiZMsxhyYtoemWtQQG2AEBGmDl2sGmI8F6IIEf876I41I=
=Lra9
-----END PGP SIGNATURE-----