A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

#If mailing sensitive data, please mail first to arrange a safe method of transfer

Contact: mailto:security@windesheim.nl



#Expiry date of this file

Expires: 2026-02-07T23:00:00.000Z



#The languages we accept mail in

Preferred-Languages: nl, en



#The location of this file

Canonical: https://www.windesheim.nl/.well-known/security.txt



#Responsible disclosure policy in English

Policy: https://www.windesheim.com/getmedia/e3e30de8-6c9b-4db5-9a68-5998d52b4d8b/Responsible-disclosure-policy-Windesheim.pdf



#Responsible disclosure policy in Dutch

Policy: https://www.windesheim.nl/over-windesheim/disclaimer/responsible-disclosure-policy



#Computer Security Incident Response Team

Contact: https://www.windesheim.nl/over-windesheim/disclaimer/computer-security-incident-response-team