Privado
  • Privado
  • Getting Started With Privado
    • Quick Start
    • Running a Scan
    • Understanding Results
    • Command Reference
    • Understanding privado.json
      • Sources
      • Processing
      • Data Flow
      • Collections
      • Violations
  • Understanding Rules
    • What are Rules?
    • Sources
    • Sinks
      • Understanding Sinks
      • Storages
      • Third Parties
      • Leakages
      • Internal APIs
    • Collections
    • Policies
  • Tutorials
    • How to scan a repository using Privado
  • Customizing Privado
    • Add a new Source
    • Add a new Leakage Sink
    • Add a new Storage Sink
    • Add a new Third Party Sink
    • Add a new Policy
  • ROPA Report
    • Generating ROPA Report
  • Play Store Data Safety Report
    • Generate Play Store Data Safety Report
    • Uploading results to Play Store
  • Extra
    • Configurations
    • Contributing through GitHub
  • About Privado
    • LICENSING
    • Privacy Policy
    • Security
Powered by GitBook
On this page
Edit on GitHub
  1. About Privado

Security

At Privado, we consider the security of our systems a top priority. If you discover a vulnerability, we would like to know about it so we can take steps to address it as quickly as possible. We would like to ask you to help us better protect our users and systems.

Please do the following:

  1. Notify us at security(at)privado.ai as soon as possible after you discover a real or potential security issue

  2. Make every effort to avoid privacy violations, degradation of user experience, disruption to production systems, and destruction or manipulation of data

  3. Only use exploits to the extent necessary to confirm a vulnerability’s presence. Do not use an exploit to compromise or exfiltrate data, establish persistent command line access, or use the exploit to pivot to other systems

  4. Provide us a reasonable amount of time to resolve the issue before you disclose it publicly

  5. Do not submit a high volume of low-quality reports

What we promise:

  1. We will respond to your report within 5 business days with our evaluation of the report and an expected resolution date

  2. We will handle your report with strict confidentiality, and not pass on your personal details to third parties without your permission

  3. We will keep you informed of the progress towards resolving the problem

  4. In the public information concerning the problem reported, we will give your name as the discoverer of the problem (unless you desire otherwise)

PreviousPrivacy Policy

Last updated 2 years ago