Security Policy
Vulnerability Disclosure Policy
At Dr Device, we take security seriously. We appreciate the security community's efforts in helping us maintain a secure platform for our users.
If you believe you've found a security vulnerability in our services, we encourage you to notify us. We welcome working with you to resolve the issue promptly.
Reporting a Vulnerability
Please report security issues by emailing kchief322@gmail.com.
When reporting vulnerabilities, please include:
- Description of the vulnerability
- Steps to reproduce the issue
- Potential impact of the vulnerability
- Any suggestions for addressing the issue
What to Expect
After reporting a vulnerability:
- We will acknowledge receipt of your report within 48 hours
- We will provide an initial assessment of the report within 5 business days
- We will keep you informed about our progress in addressing the issue
- We will notify you when the vulnerability has been fixed
Responsible Disclosure Guidelines
We request that you:
- Provide sufficient information to reproduce the vulnerability
- Give us reasonable time to address the issue before public disclosure
- Make a good faith effort to avoid privacy violations, data destruction, or service interruption during your research
- Do not access or modify data that does not belong to you
Acknowledgments
We are grateful to the security researchers who have helped improve our security. With their permission, we acknowledge them on our Acknowledgments page.