A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

#
# CycleSoftware B.V. RFC 9116 security.txt
#
# Please always try to contact us through our responsible disclosure form
# to speed up things. Should that not be an option, then in order of
# preference the ways to contact us are:
Contact: mailto:security@cyclesoftware.nl
Contact: tel: +31733030050

# If you would like to report a security issue please first read our
# responsible disclosure policy:
Policy: https://cyclesoftware.nl/responsible-disclosure/

# We can offer you a swift and proper response in the following languages:
Preferred-Languages: nl, en, be, fr

# If you think you'd like to join our team, please visit our job vacancy page:
Hiring: https://cyclesoftware.nl/vacatures/
# We do *not* use OpenPGP, for communication.
# So do *not* use the key that was used to sign this security.txt file
# for sending us messages. Use the S/MIME public key below instead:
Encryption: https://s01.cyclesoftware.nl/.well-known/csirt.crt

Expires: 2026-03-15T14:50:48.000Z

Canonical: https://cyclesoftware.nl/.well-known/security.txt
Canonical: https://www.cyclesoftware.nl/.well-known/security.txt
Canonical: https://s01.cyclesoftware.nl/.well-known/security.txt
Canonical: https://s02.cyclesoftware.nl/.well-known/security.txt
Canonical: https://cyclesoftware.nl/security.txt
Canonical: https://www.cyclesoftware.nl/security.txt
Canonical: https://s01.cyclesoftware.nl/security.txt
Canonical: https://s02.cyclesoftware.nl/security.txt

-----BEGIN PGP SIGNATURE-----

LqBNkJLgvUG/FgNE0kFV36YVgb6mebBh8qm9RL4mzMgLKz2jwHOW92jOw1Nz5w6nHaCxmbu5tMXOT7L3pBI+o2OuMNUIckT9lQjEw9l11WSGJFRhvYv+LTnLqPXx8cJumqZy02rvJG8Z4BZfcFniQAeBtU8CROGrmZrEICUOs4yihcA1QSEki/WKHZypjoCEudiNuF0E+rW3aABT564WjeFek06fsCspAorTpBtPzIXdPU1zSVfw9b8v+PJSwMNFXDKC8aiSSztBtynus5NT0WM4TlYDwaVal8p/V/x8++/tkKriwyz/yN6+AFa/t1prrdjC7ymC7za0sTHNSL6EUjgTynaTXqbgC5JatUNDB7C6uAVdf8bnogSjwiG4Z1rrZKU0xnwOjveykxe9SLohw9oGi4JrBmC3n1fkYos6OUeCAi05Od7GBxui+m2NQ3kgHjFJPId5d6AUnuqfiWhL554APbJXg39yE7H6qgMgFFk2FmbOfzPglE2KTJi6gLT4oUVu/6xs2wIBw/uoHOY3IyPDYecrsPpLWLIDfDSl9eRvc6QfpvyhA4DSjCuvdO3epsQr36XXpxkXCXN1jXASD1VfxPlvQNAfWeIE7odBVT0Lu4X89lEoMomQjAYEkbH9v1LqqO+QiVYeyLMz7UfS5ggg3RKtNXd8FH+erOoJiA0=
-----END PGP SIGNATURE-----