NEWDigital Brand Templates Create content in minutes, not hours

Learn more close

Responsible Disclosure Policy

Responsible Disclosure Policy

v. 3.0

At Bynder, we are committed to keeping our systems, network and product(s) secure. Despite the measures we take, the presence of vulnerabilities will always be possible. When such vulnerabilities are found, we’d like to learn of them as soon as possible, allowing us to take swift action to shore up our security.

Under Bynder’s Responsible Disclosure Policy, you are allowed to search for vulnerabilities, so long as you don’t:

Breaching the above restrictions may result in Bynder launching an investigation and/or taking legal action to the greatest extent of Bynder’s legal obligation and rights or that of our partners and customers

If you do discover a vulnerability, please contact us as soon as possible by sending an (encrypted) email to [email protected] To prevent information falling into the wrong hands, please use the following public key:

-----BEGIN PGP PUBLIC KEY BLOCK-----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=WDg1
-----END PGP PUBLIC KEY BLOCK-----

What we ask of you:

What we promise:

Rewards and attribution:

Assets in scope:

Out of scope:

Acquisitions:

For all our acquisitions, in order to give our development and security teams time for internal review and remediation, we will introduce a six-month blackout period. Bugs reported in that period will not qualify for a reward.

Out of scope vulnerabilities:

Any report submitted in relation to this Responsible Disclosure Policy will be handled with great care with regards to the privacy of the reporter. We will not share your personal information with third parties without your permission, unless we are legally required to do so.

This Responsible Disclosure Policy was last updated on: October 21, 2019.