Rezdy is committed to the security of our customers and their data. We believe that coordinated disclosure by security researchers and engaging with the security community is a important means of achieving our security goals.
If you believe you have found a security vulnerability in one of our products, we welcome and greatly appreciate you reporting it to email@example.com, as long as it falls in scope and is not one of the types of vulnerability listed as out-of-scope below.
Domains IN SCOPE are:
The following items can be reported to us via email, but are out of scope for bounty rewards:
The following items should not be reported:
To encourage coordinated disclosure, Rezdy does not intend to initiate any legal action or law enforcement investigation against security researchers as long as they adhere to the following guidelines:
The following are expressly prohibited and are not covered under the above Coordinated Disclosure Policy:
At this time, we are not automatically awarding bounties or cash rewards for reported vulnerabilities. However, we’re able to reward researchers who find highly critical issues on a case-by-case basis.