Responsible Disclosure Statement by Engageware

Engageware takes security and privacy very seriously for our users, our products and our staff. If you have discovered a vulnerability in our products, websites or support infrastructure, we encourage your help in mitigation by disclosing it to us in a responsible manner.

Engageware will engage with security researchers when vulnerabilities are reported to us in accordance with this Responsible Disclosure Statement. A reported vulnerability will be validated, cataloged and addressed in accordance with our posted commitments to security and privacy, as well as our other internal practices.

If you are the first to report a specific vulnerability and include detailed information sufficient to reproduce that vulnerability in your initial report, there may be a reward available for the research effort. Engageware will contact you if, at Engageware’s sole discretion, a reward is to be granted. Engageware assumes no obligation to further communication once a report is submitted. Engageware will not take legal action against, suspend, or terminate access to the platform for those who discover and report security vulnerabilities in accordance with this Responsible Disclosure Statement. Engageware reserves all legal rights in the event of any noncompliance with the following guidelines:

Do not disclose a bug or vulnerability into the public domain, without written consent from Engageware.
If a vulnerability is discovered, you are not authorized to exploit the vulnerability to compromise or expose any data. Additionally, you are not authorized to access, view, modify, delete, copy, capture or share any data exposed by the vulnerability.
Do not perform DDOS / spam attacks or degrade services in any way
Do not use scanners or automated tools to find vulnerabilities.
Do not install programs, scripts, malware on any Engageware resource, or use the resources to control or distribute the same.
Never perform phishing, social engineering or physical attacks against our users, employees, or infrastructure.
Do not engage in any activities that violate applicable laws.

How to Report an Issue

If you believe you have discovered a vulnerability, please contact issuereport@engageware.com.

We request that you use the available PGP key below to secure your report to us.

In reporting vulnerabilities, please send details of:

The suspected vulnerability and include reproduction steps that we can follow.
A private, secure communication channel through which we can contact you such as your email address.

PUBLIC PGP KEY

–––––BEGIN PGP PUBLIC KEY BLOCK–––––
Comment: User-ID: Engageware Responsible Disclosure <issuereport@engageware.com>
Comment: Expires: 10/2/2025 12:00 PM
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=auId
–––––END PGP PUBLIC KEY BLOCK–––––

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.