Menu
Your Cart

Advanced Popup Module

0

Responsible Disclosure Policy

At fashionyog.com, we take the security of our website and customer information very seriously. We appreciate the help of security researchers in identifying and reporting vulnerabilities in our systems. This Responsible Disclosure Policy outlines the process for reporting vulnerabilities to us safely and effectively.

What We Consider a Vulnerability:

A vulnerability is a weakness in our website or systems that could potentially be exploited by attackers to gain unauthorized access to information or disrupt our operations. This can include things like:

Security bugs: Flaws in the programming code of our website.
Misconfigurations: Issues with how our servers or software are set up.
Social engineering vulnerabilities: Weaknesses that could be exploited by someone tricking an employee into giving up information.

What We Don't Consider a Vulnerability:

We appreciate your enthusiasm, but there are some things we don't consider vulnerabilities under this policy. These include:

Denial-of-service (DoS) attacks: Attempts to overwhelm our website with traffic to make it unavailable to others.
Social engineering attacks that target users directly: We recommend reporting these directly to your email provider or social media platform.
Publicly known vulnerabilities: If the vulnerability is already widely known, we likely already are aware of it and working on a fix.

How to Report a Vulnerability:

If you believe you have found a vulnerability in our website or systems, please follow these steps:
Email us at: support@fashionyog.com
Include the following information in your report:
- A clear description of the vulnerability, including steps to reproduce it (if possible).
- Any screenshots or proof of concept code that can help us understand the issue.
- Your contact information (optional, but helpful for us to communicate with you).
Do not:
- Exploit the vulnerability for personal gain or disrupt our systems.
- Share the vulnerability with anyone else publicly.
- Use social engineering or phishing tactics to report the vulnerability.

What to Expect After You Report a Vulnerability:

We will review your report as soon as possible and respond within 5 business days. We will keep you updated on the progress of fixing the vulnerability and aim to resolve it within a reasonable timeframe.

Our Commitment to You:

We appreciate your help in keeping fashionyog.com secure. We will not take legal action against you for reporting a vulnerability in accordance with this policy. We may also acknowledge your contribution publicly (with your permission) on a "Hall of Fame" page if you wish.

Thank you for helping us keep fashionyog.com a safe and secure place to shop!