# Poyntr Security Disclosure Policy
# Conforms to RFC 9116 (https://www.rfc-editor.org/rfc/rfc9116)
#
# Report a vulnerability responsibly:
#   - For non-urgent reports, email compliance@poyntr.ai
#   - For urgent issues affecting active users, also CC privacy@poyntr.ai
#
# Please do NOT:
#   - Attempt to access, modify, or destroy data belonging to other users
#   - Perform denial-of-service testing against production
#   - Run automated scanners that generate sustained load
#
# We commit to:
#   - Acknowledging your report within 2 working days
#   - Triaging and replying with our assessment within 10 working days
#   - Not pursuing legal action against good-faith research consistent
#     with this policy
#   - Crediting your disclosure publicly if you wish

Contact: mailto:compliance@poyntr.ai
Contact: mailto:privacy@poyntr.ai
Expires: 2027-05-13T23:59:59.000Z
Preferred-Languages: en
Canonical: https://poyntr.ai/.well-known/security.txt
Policy: https://poyntr.ai/compliance
Hiring: https://poyntr.ai/team