A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

#
# Klik Onderwijs security.txt
#
Canonical: https://klikonderwijs.nl/.well-known/security.txt
Canonical: https://www.klikonderwijs.nl/.well-known/security.txt

# Please always try to contact us through our responsible disclosure form
# to speed up things. Should that not be an option, then in order of
# preference the ways to contact us are:
Contact: https://klikonderwijs.nl/wp-content/uploads/2022/05/Informatiebeveiligingsbeleid-Klik-Onderwijs_1.1.pdf
Contact: mailto:info@klikonderwijs.nl

Expires: 2024-11-30T10:00:00.000Z

# We can offer you a swift and proper response in the following languages:
Preferred-Languages: en, nl

# If you would like to report a security issue please first read our
# responsible disclosure policy:
Policy: https://klikonderwijs.nl/wp-content/uploads/2022/05/Informatiebeveiligingsbeleid-Klik-Onderwijs_1.1.pdf

# Encrypt your findings with our PGP key to prevent the information from falling into the wrong hands:
Encryption: https://klikonderwijs.nl/pgp-public-key.txt

-----BEGIN PGP SIGNATURE-----

Sv5ygrnqmwHFCX5IxoNbGKVaMaGeMFBW84gi+AW2YavCQrBDnnWkowL4q2WVvZFH
zOKsp7MWA9UtK1tzBooKHk+1E6Kxs87QUx0kPJyiT+UNNd4Uu9MFhFF3k7zj8T5a
zA3dQWCmJOlhEGMSzdMrfuxjm10AW6bipPkTOztp22YwRXE+4tFASempMYYBhuSl
jHLVzsWDD7tvrS4pAfeQn/FZ/CGj3Qw4b6sQYjvZP9HT1V9g1X6Z/3CR0/XA7kfF
wfzP3GF3OjZehQ9UwB6o1TvLSQT+vekj4n08S1T9CI5sWKvmyfrjO3dzCp/7nX2g
nLkWj2fQmS/ZrlwT4UagMP3eGQD2YzbrxbxfyLsKY7/na9TSOy1NqBY+/117g977
dYmu3jyCkHsbyfWRVxVyokgp4C3Hj2YoARFsFBnXbBXGp3B4YjEQ+oP/yTGcCXv+
JxLNg/GPI9R2tcff9z1WU/WL3orUGlV0xsB7CE67IfxAlGc2rLDw
=Rsov
-----END PGP SIGNATURE-----