logo
logo
  • search
  • nl
  • Services & Solutions
    • Server to Service
      • Microsoft Azure
      • Managed Hosting
      • Private, Public and Hybrid cloud
      • Proof of Concept
      • Workspace
    • Managed Security Services
      • Secure Digital Communications Service
      • Information security
      • Certifications and audits
    • Time & Scale
      • Solvency IT Services
      • Big Data, Analytics and Business Intelligence
    • Infrastructure
      • CI/CD
      • DevOps
      • Software Defined Datacenter
      • IaaS, PaaS and Saas
  • About Us
    • Corporate Story
      • Vision and mission
      • How we work
      • Why Solvinity?
      • Solvineers
      • Corporate Social Responsibility
      • Certifications
    • Become a Solvineer
      • Vacancies
    • Partners
      • Technology Partners
      • Solution Partners
  • Branches
    • Governments and Non-profit
      • National, regional and local government
      • Non-profit organisations
    • Financial Institutions
      • Banks and Insurance companies
    • Business services
      • Business clients
    • Case Studies
      • ONVZ
      • CJIB
      • Faster Forward
      • Zig Websoftware
      • Qurrent
      • FRISS
      • Ministry of Justice and Security
  • News & Media
    • News
      • News overview
    • Blogs
      • Blogs overview
    • Events
      • Events overview
    • Downloads
      • Case Studies
      • White Papers
      • Giarte 2018
  • Support
  • Contact

Solvinity

Responsible Disclosure

  1. Home
  2. Responsible Disclosure

Solvinity

Responsible Disclosure

28 september 2015

The following text describes Solvinity’s policy concerning responsible disclosure, in addition to the guidelines as described by the NCSC:

At Solvinity the security of our systems is of utmost importance. Despite our concern for security it may happen that there is a weak spot in one of our systems or in one of our customers’ systems.

Our policy for responsible disclosure is not an invitation to actively and extensively scan our company network to uncover vulnerabilities. We monitor our company network ourselves.

If you still find a flaw in our systems we would like to receive notice so we can take measures as soon as possible. We would like to cooperate with you in order to better protect our customers and our systems.

What we ask of you

  • E-mail your findings to security@solvinity.com. Encrypt your findings with our PGP-key (fingerprint 4F90 3393 06A6 674E 9486  5509 7E0B 4A53 0F4D 88ED) to prevent the information falling into the wrong hands.
  • To not abuse the problem, for instance by downloading more data than necessary to show the leak or to look into, remove or change data of third parties.
  • To not share the problem with others till it is solved, and to delete all confidential data that was obtained through the leak as soon as it has been closed.
  • To not make use of attacks on the physical security, social engineering, distributed denial of service, spam or third party applications.
  • To give sufficient information to reproduce the problem so we can solve it as soon as possible. Usually the IP-address or the URL of the affected system and a description of the vulnerability is sufficient, but more complex vulnerabilities may require additional information.

What we promise you

  • We will respond to your message within 3 days with our assessment of the issue and an expected date for the solution.
  • If you have complied with the above mentioned conditions we will not take legal action against you concerning the notification.
  • We will treat your notification confidentially and your personal information will not be shared with third parties without your permission, unless this is necessary to fulfill a legal obligation. Report under a pseudonym is possible.
  • We will keep you updated on the progress of the solution of the issue.
  • In the communication about the reported issue we will, if you wish, mention your name as the discoverer.

We strive to resolve any problems as quickly as possible and we would like to be involved in any publication about the problem after it is resolved. 

Let us solve your problem

Call us on +31 (0)20 364 36 00 or send us an e-mail

ask your question
VacanciesBlogsContactSupportprivacy statement

Visit address

Solvinity B.V.Hogehilweg 31101 CA AmsterdamSee all offices

Follow Us

LinkedIn Twitter

Newsletter

×

Newsletter



We will send you an e-mail to verify your subscription. This may take a few minutes. Please take notice of our privacy statement.


DisclaimerCookie policyResponsible Disclosure
© 2019 Solvinity

Indicate your cookie preferences

We are committed to a secure digital world. In order to protect your privacy, we do everything we possibly can to make our website safe. We use cookies to ensure that the website functions, to improve the website and to support our marketing activities. View our cookie policy for more information.

Accept Set preferences

Indicate your cookie preferences

Please indicate below which type of cookies we may and may not place:

Functional Cookies

These cookies are necessary to ensure that the website works properly.

Analytical Cookies

We use these cookies to analyse how visitors use our website, so that we can improve the content and functionality.

Marketing Cookies

We use these cookies to support our marketing campaigns. For example, this gives us an opportunity to remind you about us in the future through advertisements.


You give permission for:

  • Saving the default language in which the website is shown to you

  • Saving your cookie preferences

  • Saving an identification number of your session

  • Saving the default language in which the website is shown to you

  • Saving your cookie preferences

  • Saving an identification number of your session

  • Saving data about your browsing behaviour on this website (pages visited, searches, duration of your visit, etc.)

  • Saving the default language in which the website is shown to you

  • Saving your cookie preferences

  • Saving an identification number of your session

  • Saving data about your browsing behaviour on this website (pages visited, searches, duration of your visit, etc.)

  • Saving your website visit so that we can show advertisements on other websites you visit


Back Save