Vulnerability Disclosure Policy
R3-IoT Ltd. is committed to addressing and reporting security issues through a coordinated and constructive approach designed to provide the greatest protection for R3-IoT Ltd. customers, partners, staff, and all Internet users.
A security vulnerability is a weakness in our systems or services that may compromise their security. This policy applies to security vulnerabilities discovered anywhere by both R3-IoT Ltd. staff and by others using R3-IoT Ltd. services. The responsibility for this policy is with the senior management team of R3-IoT Ltd. who will review it on an annual process. All day-to-day staff must follow this policy and will receive regular training on how to follow it.
Reporting vulnerabilities:
If you believe you have discovered a vulnerability in one of our services or have a security incident to report, please email security@r3-iot.com.
Once we have received a vulnerability report, R3-IoT Ltd. takes a series of steps to address the issue:
R3-IoT Ltd. will endeavour to keep the reporter apprised of every step in this process as it occurs.
We greatly appreciate the efforts of security researchers and discoverers who share information on security issues with us, giving us a chance to improve our services, and better protect our customers. In line with general responsible disclosure good practice, we ask that security researchers:
This document was last updated 11 April 2022