A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Canonical: http://intakt.com/.well-known/security.txt
Canonical: http://www.intakt.com/.well-known/security.txt
Canonical: http://service.intakt.com/securitytxt/generate.php?domain=intakt.com
Expires: 2026-06-05T03:39:25+00:00

# Please always try to contact us through our online form to speed up things.
Contact: https://www.intakt.com/security-en?lang=1
Contact: https://www.intakt.com/security
Contact: mailto:security@intakt.com

# This is the PGP public key that we use to sign our security.txt.
# Do *not* use it to send encrypted mails to us.
Encryption: dns:2591d67d64ef2e80cde67d27b6510e61eca0b5b7f220a30cbaf0bcf0._openpgpkey.sidnlabs.nl.

# We can offer a proper response in the following languages:
Preferred-Languages: nl, en

-----BEGIN PGP SIGNATURE-----
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=IUVd
-----END PGP SIGNATURE-----