A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

# Canonical URL
Canonical: https://daxisweb.nl/.well-known/security.txt

# Our security address
Contact: https://daxis-ict.nl/meld-kwetsbaarheid/
Contact: https://daxis-ict.nl/report-vulnerability/

# Our security policy
Policy: https://daxis-ict.nl/meld-kwetsbaarheid/#policy
Policy: https://daxis-ict.nl/report-vulnerability/#policy

# Hall of fame
Acknowledgments: https://daxis-ict.nl/hall-of-fame/

# These are the languages we speak
Preferred-Languages: nl,en

# Our OpenPGP key
Encryption: https://daxis-ict.nl/meld-kwetsbaarheid/
Encryption: https://daxis-ict.nl/report-vulnerability/
Encryption: openpgp4fpr:811100944C94E98784B291AC6C447AC1825F7655

# You shouldn't trust this file, once it has expired (like bad milk)
Expires: 2025-09-02T05:20:33Z

-----BEGIN PGP SIGNATURE-----
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=EPXq
-----END PGP SIGNATURE-----