A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Canonical: https://isaeus.nl/.well-known/security.txt
Contact: mailto:security@isaeus.nl
Preferred-Languages: en,nl
Encryption: https://isaeus.nl/pgp-key.txt
Expires: 2026-05-03T06:43:49Z

-----BEGIN PGP SIGNATURE-----
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=7vvC
-----END PGP SIGNATURE-----