Contact us Start a Trial

Security

Responsible Disclosure Policy

At Sigasi, we prioritize the security and privacy of our customers, users, and systems. We are committed to ensuring that our platforms and applications remain secure. If you believe you’ve found a security vulnerability, we encourage you to report it to us responsibly so we can address it promptly.

How to Report a Vulnerability

If you discover a vulnerability, please submit your findings to us via email at admin@sigasi.com.

In your report, please include:

  • A detailed description of the vulnerability.
  • Steps to reproduce the issue, if possible.
  • Any relevant details such as affected systems, tools used, or potential impact.

Our Commitments

  1. We will respond to your submission within 5 business days to acknowledge receipt.
  2. We will work diligently to resolve verified issues in a timely manner.
  3. We will keep you updated on the progress of the resolution.
  4. We will publicly recognize researchers who help us improve our security, with their consent (optional).

Scope of the Program

The following areas are in-scope for vulnerability testing:

  • All of our websites, servers, and tools used internally
  • Current, in-maintenance releases of our products

These areas are out of scope:

  • Legacy versions of our products
  • Any website, server or product while accessed or used by our customers

Strictly Prohibited Activities

  • Denial of service (DoS) attacks.
  • Exploiting vulnerabilities beyond testing purposes.
  • Social engineering of employees or users.
  • Accessing, modifying, or interfering with data belonging to our customers, users, or systems.
  • Exfiltrating sensitive information, even for testing purposes.

Recognition

We may publicly recognize researchers in a “Hall of Fame” for valid reports. If applicable, please let us know if you’d like to opt out of public recognition.

We will not take legal action against researchers who follow this policy in good faith. Please refrain from violating laws or breaching systems outside the program scope.

Thank you for helping us maintain a secure environment for everyone.

The Sigasi security team