A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

# Hello, and welcome to our security.txt file.
# This file was first added at 29-11-2022T14:30:00z.

# You shouldn't trust this file, once it has expired (like bad milk).
# We are sometimes a bit forgetful, but we do have an annual re-occuring task to keep this file up-to-date.
Expires: 2024-12-01T13:37:00z

# Please always try to contact us via the below methods to speed up things.
Contact: mailto:helpdesk@sebsoft.nl
Contact: tel:+31886000800

# We can offer you a proper response in the following languages:
Preferred-Languages: nl, en