A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

# Hi there, thanks for taking an interest in zorg en zekerheid security! 

# You shouldn't trust this file, once it has expired (like bad milk).
# We are sometimes a bit forgetful, but we do have an annual re-occuring task to keep this file up-to-date.
Expires: 2026-04-21T21:23:54z

# If you think you found a issue or vulnerability, please let us know.
# Please always try to contact us through our Coordinated Vulnerability Disclosure process to speed up things.
# You can find the process here: https://www.zorgenzekerheid.nl/veiligheid

# Should that not be an option, then in order of preference the ways to contact us:
Contact: mailto:cybersecurity@zorgenzekerheid.nl
Canonical: https://www.zorgenzekerheid.nl/.well-known/security.txt

# You can find the csirt@zorgenzekerheid.nl PGP key in our DNS zone.
Encryption: https://www.zorgenzekerheid.nl/.well-known/PublicPGPKey.txt

# We can offer you a proper response in the following languages:
Preferred-Languages: nl, en

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (GNU/Linux)
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=UQT9
-----END PGP SIGNATURE-----