# Opagio Ltd — Security Contact Information
# https://securitytxt.org/ | RFC 9116

Contact: mailto:security@opag.io
Contact: mailto:privacy@opag.io
Expires: 2027-03-31T23:59:59.000Z
Preferred-Languages: en
Canonical: https://opag.io/.well-known/security.txt
Policy: https://opag.io/privacy

# If you have discovered a security vulnerability in the Opagio platform
# or website, please report it responsibly to security@opag.io.
#
# We ask that you:
# - Allow us reasonable time to investigate and address the issue
#   before making any information public
# - Avoid accessing or modifying other users' data
# - Act in good faith to avoid privacy violations, data destruction,
#   and disruption to our services
#
# We will acknowledge receipt of your report within 3 business days
# and aim to provide an initial assessment within 10 business days.
#
# We do not currently operate a formal bug bounty programme, but we
# recognise and appreciate responsible disclosure efforts.