From 6aa7910af1a5372df1d458ea0e5574c1e1f572bd Mon Sep 17 00:00:00 2001 From: hackerESQ Date: Fri, 25 Oct 2024 13:37:22 -0500 Subject: [PATCH] fix:update responsible disclosure language in privacy notice --- resources/markdown/policy.en.md | 7 +++---- resources/markdown/policy.es.md | 1 - 2 files changed, 3 insertions(+), 5 deletions(-) diff --git a/resources/markdown/policy.en.md b/resources/markdown/policy.en.md index d682e74..e886a38 100644 --- a/resources/markdown/policy.en.md +++ b/resources/markdown/policy.en.md @@ -1,6 +1,6 @@ # Privacy Notice -__Last updated: August 23, 2024__ +__Last updated: October 25, 2024__ Your privacy is important to us. This Privacy Notice describes Investbrain’s (also referred to as “we” or “our”) practices on collection, processing, and disclosure of your information when you visit our website or use our application (collectively referred to as “Services”). This Privacy Notice also tells you about your rights and how the law protects you. @@ -74,9 +74,8 @@ In addition, we genuinely value the assistance of security researchers and any o - We will define the severity of the issue based on the impact and the ease of exploitation. - We may take 3 to 5 days to validate the reported issue. - Actions will be initiated to fix the vulnerability in accordance with our commitment to security and privacy. -- When conducting security testing, should not violate our privacy policies, modify/delete unauthenticated user data, disrupt production servers, or to degrade user experience. -- Documenting or publishing the vulnerability details in public domain is against our responsible disclosure policy. -- Keep information about any vulnerability confidential until the issue is resolved +- When conducting security testing, you should not violate our privacy policies, modify/delete unauthenticated user data, disrupt production servers, or degrade user experience. +- Keep information about any vulnerability confidential until the issue is resolved. ## Children’s Privacy No part of the Services is directed to children under the age of 13. We do not knowingly collect personally identifiable information from anyone under the age of 13. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us immediately. diff --git a/resources/markdown/policy.es.md b/resources/markdown/policy.es.md index 75a51aa..67d310a 100644 --- a/resources/markdown/policy.es.md +++ b/resources/markdown/policy.es.md @@ -76,7 +76,6 @@ Además, valoramos genuinamente la asistencia de los investigadores de seguridad - Podemos tardar de 3 a 5 días en validar el problema reportado. - Se iniciarán acciones para corregir la vulnerabilidad de acuerdo con nuestro compromiso con la seguridad y privacidad. - Al realizar pruebas de seguridad, no debe violar nuestras políticas de privacidad, modificar/eliminar datos de usuarios no autenticados, interrumpir los servidores de producción o degradar la experiencia del usuario. -- Documentar o publicar detalles de la vulnerabilidad en dominios públicos va en contra de nuestra política de divulgación responsable. - Mantenga la confidencialidad de la información sobre cualquier vulnerabilidad hasta que el problema sea resuelto. ## Privacidad de los niños