Free shipping. Get 10% off by subscribing to our newsletter! 🏷️

CyberSecurity

Vitesy Vulnerability Disclosure Policy


1. Purpose
Vitesy is committed to ensuring the security and integrity of our products and services. This policy outlines the procedures for reporting security vulnerabilities and the guidelines Vitesy follows in handling such reports.

2. Scope
This policy applies to any security vulnerabilities identified in Vitesy’s products, services, websites, and associated infrastructure. It covers both Vitesy-developed and third-party components integrated into our solutions.

3. Reporting a Vulnerability
If you identify a potential security vulnerability in any of Vitesy’s products or services, or if you have a security incident to report, we encourage you to report it to us promptly via the dedicated form.

Please include the following information in your report:

  • Summary of the vulnerability
  • Product type
  • Serial number
  • A detailed description of the vulnerability.
  • Steps to reproduce the vulnerability.
  • Any potential impact or risks associated with the vulnerability.
  • Any relevant files
  • Your email for follow-up.

4. What to Expect

  • Acknowledgment: We will acknowledge receipt of your report within 3 business days.
  • Investigation: Our security team will investigate your report and assess the potential impact. We may reach out to you for further information if necessary.
  • Resolution: If the vulnerability is confirmed, we will work to develop a fix or mitigation. We aim to resolve critical issues as quickly as possible.
  • Notification: We will keep you updated with any relevant information regarding your report and will notify you once the issue is resolved or if we determine that no action is required.


5. Safe Harbor
We value the efforts of security researchers who help us protect our systems, as long as your research adheres to the guidelines in this policy and is conducted in good faith.

We invite you not to:

  • Access, modify or delete any unnecessary data;
  • Use high-intensity invasive or destructive scanning tools to find vulnerabilities;
  • Attempt or report any form of denial of service, e.g. overwhelming a service with a high volume of requests;
  • Disrupt Vitesy's services or systems;
  • Submit fake vulnerability reports;
  • Communicate any vulnerabilities or associated details other than by means described in this Disclosure Vulnerability Policy;
  • Communicate any vulnerabilities to any third party before Vitesy has taken charge of the report;
  • Social engineer, ‘phish’ or physically attack Vitesy's staff or infrastructure;
  • Demand financial compensation in order to disclose any vulnerabilities.


6. Legalities
This policy is designed to be compatible with common vulnerability disclosure good practice. It does not give you permission to act in any manner that is inconsistent with the law, or which might cause Vitesy or partner organizations to be in breach of any legal obligations.


7. Changes to This Policy
Vitesy reserves the right to modify this policy at any time. We encourage regular review of this page for any updates. Changes will be effective immediately upon posting.


8. Contact Information
For any questions or concerns regarding this policy, please contact us at cybersecurity@vitesy.com.

Report an incident or vulnerability

If you think to have identified a potential incident or security related issue about any Vitesy connected appliances, please fill the below form in order to help us in the identification, analysis and potential remediation. 
Fill the form