menu
Our policies
Security
GDPR
itslearning aims to keep its services safe for everyone, and security is our top priority. If you believe you have found a security vulnerability in itslearning, we encourage you to contact us at [email protected]. We will acknowledge receipt of your vulnerability report and strive to send you regular updates about our progress.
You should give us reasonable time to investigate and mitigate an issue you report before making public any information about the report or sharing such information with others.
You should not exploit a security issue you discover for any reason, and avoid privacy violations as well as interruption or degradation of our services.
We may reward submissions that help us keep our services safe to use, providing that they adhere to this responsible disclosure policy. Whether a reward is offered or not is solely at our discretion.
We appreciate being notified in case of a vulnerability, as we believe proper configuration and hardening of all resources is important, even for open information.
Systems within scope:
Out of scope:
Researchers who report potential vulnerabilities according to our responsible disclosure policy and scope which lead to changes on our side, will earn a spot in our Hall of Fame, provided the report fulfills certain requirements:
We are grateful for all reports on possible vulnerabilities that will help us be more secure.