Responsible Disclosure
Institutional channel and protocols for the responsible reporting of technical vulnerabilities within the evenn infrastructure.
01Commitment to Security
At evenn, we understand security as a dynamic and collaborative process. We invite security researchers and our technical community to responsibly report any findings that may affect the integrity of our digital infrastructure.
02Reporting Protocol
If you identify a potential vulnerability, we request that you:
- Send a detailed technical report.
- Do not exploit the vulnerability to access third-party data or degrade the service.
- Provide reasonable time for analysis and mitigation before public disclosure.
- Include clear steps to reproduce the finding (PoC).
03Our Response
We recognize the value of the technical community in strengthening our architecture. We commit to confirming receipt promptly, maintaining transparency during the mitigation process, and not initiating legal actions against those who follow this protocol in good faith.
Contact and Institutional Information
- Legal and Compliance Office
EVENN COLOMBIA S.A.S.
- Correspondence Address
Carrera 43A 11A 44 Medellín, Colombia
- Contact Email
- Subject
Cybersecurity / Vulnerability Disclosure
This information is provided for legal compliance and official notifications. evenn processes these communications according to its internal governance protocols.