A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Canonical: http://intakt.com/.well-known/security.txt
Canonical: http://www.intakt.com/.well-known/security.txt
Canonical: http://service.intakt.com/securitytxt/generate.php?domain=intakt.com
Expires: 2026-07-09T03:50:58+00:00

# Please always try to contact us through our online form to speed up things.
Contact: https://www.intakt.com/security-en?lang=1
Contact: https://www.intakt.com/security
Contact: mailto:security@intakt.com

# This is the PGP public key that we use to sign our security.txt.
# Do *not* use it to send encrypted mails to us.
Encryption: dns:2591d67d64ef2e80cde67d27b6510e61eca0b5b7f220a30cbaf0bcf0._openpgpkey.sidnlabs.nl.

# We can offer a proper response in the following languages:
Preferred-Languages: nl, en

-----BEGIN PGP SIGNATURE-----
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=xbNc
-----END PGP SIGNATURE-----