A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Canonical: http://intakt.com/.well-known/security.txt
Canonical: http://www.intakt.com/.well-known/security.txt
Canonical: http://service.intakt.com/securitytxt/generate.php?domain=intakt.com
Expires: 2027-02-03T03:47:57+00:00

# Please always try to contact us through our online form to speed up things.
Contact: https://www.intakt.com/security-en?lang=1
Contact: https://www.intakt.com/security
Contact: mailto:security@intakt.com

# This is the PGP public key that we use to sign our security.txt.
# Do *not* use it to send encrypted mails to us.
Encryption: dns:2591d67d64ef2e80cde67d27b6510e61eca0b5b7f220a30cbaf0bcf0._openpgpkey.sidnlabs.nl.

# We can offer a proper response in the following languages:
Preferred-Languages: nl, en

-----BEGIN PGP SIGNATURE-----
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=UvG6
-----END PGP SIGNATURE-----