Vulnerability disclosure program

OwnHome takes the security of your personal information very seriously. We are committed to maintaining a secure online environment and continuously improving our safeguards. Your feedback plays a crucial role in helping us identify and address potential vulnerabilities.

Our Vulnerability Disclosure Program

This program provides a formal process for security researchers and ethical hackers to responsibly disclose potential security flaws they discover in our digital platforms.

Scope

The program focuses on technical vulnerabilities. For privacy-related concerns or feedback, please refer to our Privacy Policy, which detail how we handle personal information and outline the steps for raising privacy inquiries or concerns.

Guidelines

We encourage responsible security research that adheres to ethical guidelines. We cannot condone any actions that are malicious, harmful, or jeopardise the security of our customers' data. This includes activities such as unauthorised access, data exfiltration, or social engineering attacks. Such actions are not considered legitimate security research and may result in legal consequences.

To effectively address your findings, please provide detailed information that allows us to reproduce the issue. This may include:

  • Affected URLs
  • Relevant account details used for testing (if applicable)
  • IP addresses involved in testing
  • Step-by-step instructions if the vulnerability is complex

While anonymous submissions are accepted, providing your real name or a link to your online profile can help us verify the legitimacy of the report.

How to Submit

To report a potential vulnerability, please email us at security@ownhome.com.