pcfg insurance
pcfg insurance

Security Vulnerability Disclosure Policy

Purpose

This policy provides security researchers with guidelines for conducting security testing and reporting vulnerabilities. We at PCFG Insurance value the contributions of the security research community in helping us maintain a secure environment for our users.

Scope

In-Scope Systems and Services

Out-of-Scope Systems

Safe Harbor

We support good-faith security research and will not initiate legal action against researchers who:

Guidelines for Testing

Security researchers MUST:

Reporting Process

  1. Submit reports through one of these channels:
  1. Include in your report:

Response Timeline

Rewards and Recognition

Acknowledgment

Severity Classifications

Critical:

High:

Medium:

Low:

Disclosure Policy

Contact Information

Security Team Email: security@pcfginsurance.com
PGP Key: https://pcfginsurance.com/pgp-key.txt
Emergency Contact: +1 (877) 717-7234

Policy Updates

This policy was last updated on December 13, 2024. We reserve the right to update this policy at any time. Major changes will be announced through our security mailing list.

Client Services