Cyberseal Infosec Solutions
Global Security Coverage

Responsible Disclosure

Responsible Behaviour & Disclosure Policy

Our commitment to security and coordinated vulnerability reporting.

Effective Date: 24 February 2026

Last Updated: 24 February 2026

1Purpose

Cyberseal is committed to responsible security practices and encourages good-faith vulnerability reporting that helps protect users, customers, and the security community.

2Scope

This policy applies to:

  • www.thecyberseal.com and related web properties we control
  • Public-facing systems explicitly owned and operated by Cyberseal

(If you are unsure whether a target is in scope, contact us before testing.)

3How to Report a Vulnerability

Please report vulnerabilities via email:

Email: info@thecyberseal.com (Subject: “Responsible Disclosure”)

Include:

  • A clear description of the issue and potential impact
  • Steps to reproduce (proof-of-concept kept minimal and safe)
  • Affected URLs, parameters, screenshots/logs (if helpful)
  • Your contact information and preferred acknowledgement name (optional)

4Good-Faith Testing Guidelines

We welcome responsible testing that is:

  • Non-destructive and avoids privacy violations
  • Limited to what is necessary to confirm the vulnerability
  • Conducted in a way that does not degrade service availability

5Prohibited Activities

To protect users and systems, please do not:

  • Access, modify, copy, or exfiltrate data that is not your own
  • Perform denial-of-service (DoS/DDoS), stress tests, or large-scale scanning
  • Use social engineering against employees/contractors/customers
  • Publicly disclose details before we have had a reasonable opportunity to remediate
  • Demand payment in exchange for non-disclosure (extortion)

6Our Commitments

When you report in good faith and follow this policy, we aim to:

  • Acknowledge receipt within a reasonable timeframe
  • Investigate and validate the report
  • Work toward remediation based on severity and risk
  • Communicate status updates when feasible

7Safe Harbor

We will not pursue legal action for good-faith security research that complies with this policy, does not harm users or systems, and does not involve data theft, extortion, or disruption.

This safe harbor does not cover unlawful activity, access beyond what is necessary to demonstrate impact, or actions that violate privacy rights.

8Public Disclosure & Coordination

We request coordinated disclosure: Do not publicly disclose until we confirm remediation or agree on a disclosure timeline.

If you wish to publish, we can coordinate a responsible timeline and wording.

9Responsible Use of Our Site

Visitors and users must use our site responsibly and lawfully. Abusive, malicious, or harmful activity may be logged and acted upon.

CSIS.

Cyber Seal Infosec Solutions