A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

#
# Klik Onderwijs security.txt
#
Canonical: https://klikonderwijs.nl/.well-known/security.txt
Canonical: https://www.klikonderwijs.nl/.well-known/security.txt

# Please always try to contact us through our responsible disclosure form
# to speed up things. Should that not be an option, then in order of
# preference the ways to contact us are:
Contact: https://klikonderwijs.nl/wp-content/uploads/2022/05/Informatiebeveiligingsbeleid-Klik-Onderwijs_1.1.pdf
Contact: mailto:info@klikonderwijs.nl

Expires: 2023-10-13T10:00:00.000Z

# We can offer you a swift and proper response in the following languages:
Preferred-Languages: en, nl

# If you would like to report a security issue please first read our
# responsible disclosure policy:
Policy: https://klikonderwijs.nl/wp-content/uploads/2022/05/Informatiebeveiligingsbeleid-Klik-Onderwijs_1.1.pdf

# Encrypt your findings with our PGP key to prevent the information from falling into the wrong hands:
Encryption: https://klikonderwijs.nl/pgp-public-key.txt