Sadad Responsible Disclosure
This policy outlines how you can help Sadad Payment Solutions maintain the safety and security of our systems by notifying us in case of a vulnerability.
Sadad Payment Solutions takes the security of our systems and its data very seriously.
We are continuously striving to maintain and ensure that our environment is safe and secure for everyone to use.
If you’ve discovered any security vulnerabilities associated with any of our Sadad Payment Solutions services, we do appreciate your help in disclosing it to us in a responsible manner.
- Promptly acknowledging receipt of your vulnerability report and to understand and attempt to resolve the issue quickly;
- Validating, responding and fixing such vulnerability in accordance with our commitment to security and privacy.
- Sadad Payment Solutions will notify you when the issue is fixed.
- Unless prescribed by law otherwise, not pursue or take legal action against you or the person who reported such security vulnerabilities.
- Not suspend or terminate access to our service/services if you are a merchant. If you are an agent, not suspend or terminate merchants access to our services to which the agent represents.
The identified bug shall have to be reported to our security team by sending us a mail from their registered email address to [email protected]
(Subject: Suspected Vulnerability on Sadad Payment Solutions) (without changing the subject line else the mail shall be ignored and not eligible for bounty). The mail should strictly follow the details as below:
1. Vulnerability details
- Help us get an idea of what this vulnerability is about.
- Describe the vulnerability and its impact.
- Provide a proof of concept or replication steps
- Attach proof-of-concept scripts, screenshots, screen recordings, etc.
2. URL / Location of vulnerability (optional)