A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

Contact: https://www.philips.com/security
Contact: mailto:productsecurity@philips.com
Encryption: https://www.philips.com/c-dam/corporate/security/master/pgp-key/productsecurity-at-philips-dotcom_public_OpenPGP_certificate_2022.asc
Acknowledgements: https://www.philips.com/a-w/security/coordinated-vulnerability-disclosure/hall-of-honors.html
Policy: https://www.philips.com/a-w/security/coordinated-vulnerability-disclosure.html
Hiring: https://www.careers.philips.com/global/en/search-results?keywords=security