A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----

Expires: 2024-05-20T10:00:00.000Z
Canonical: https://www.data4all.nl/.well-known/security.txt

Contact: mailto:abuse@data4all.nl
Encryption: https://www.data4all.nl/pgp.txt
Preferred-Languages: nl, en

-----BEGIN PGP SIGNATURE-----
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=aexX
-----END PGP SIGNATURE-----