Vulnerability Exposure Policy
This policy applies to all products and services offered by ABACUS digital, as well as to any third-party components or dependencies that are integrated or used by ABACUS digital’s products and services. This policy covers any potential vulnerabilities and errors that may affect the confidentiality, integrity, availability, functionality, or performance of ABACUS digital’s products and services, or that may pose a risk to ABACUS digital’s customers, partners, employees or other stakeholders. This policy does not apply to any issues that are not related to ABACUS digital’s products and services, such as phishing, social engineering, physical security, or denial-of-service attacks.
ABACUS digital welcomes and encourages reports from anyone who identifies a potential vulnerability or error in ABACUS digital’s products and services, including but not limited to customers, partners, employees, researchers, academics, or ethical hackers. ABACUS digital values the contributions of the external security research community and will reward them for any new and valid vulnerability reports that help improve ABACUS digital’s security posture, in accordance with SCBX Group’s Bug Bounty Program guidelines and terms and conditions.
The safety and security of our customers’ data, and the reliability of our products and services, are of utmost importance to ABACUS digital. Therefore, we aim to design and make products and services with the highest levels of security and reliability. Despite our best efforts, due to the highly complex and sophisticated nature of our products and services, vulnerabilities and errors may still be present in our products and services.
This policy describes ABACUS digital’s approach to requesting and receiving reports related to potential vulnerabilities and errors in its products and services. Customers, users, researchers, partners and any other person that interacts with ABACUS digital's products and services are encouraged to report identified vulnerabilities and errors by using the form present on the Vulnerability Disclosure Policy platform. Customers, users, researchers, partners and any other person that interacts with ABACUS digital’s products and services are encouraged to report identified vulnerabilities and errors by using the form present on the Vulnerability Disclosure Policy platform.