This article contains information on how to report a security vulnerability on the Aware platform, including rules for responsible disclosure, contact details, and the company's commitment to timely responses and collaboration.
If you suspect a security vulnerability on the Aware platform, please notify us immediately. We take data security seriously and will promptly investigate all reports.
Guidelines for Suspected Security Vulnerability
- Do not attempt to gain access to another user's data.
- Do not disrupt the availability of the Aware Platform.
- Do not utilize scanners or automated tools while testing.
- Do not publicly disclose a bug before it is fixed.
- Do not employ social engineering attacks.
- Work with security@awarehq.com to answer any questions.
We are dedicated to working with you on security vulnerabilities and timelines, guided by the following principles:
- A prompt response to your report.
- Transparent communication throughout the process.
- No legal action, provided you follow the guidelines.
You can submit a ticket, and our security team will respond as soon as possible. To find out more about Aware's security, please visit our website (https://awarehq.com/security). For other security questions or issues, please email security@awarehq.com.
Comments
Please sign in to leave a comment.