Hirebook's Vulnerability Disclosure Program

Hirebook Technologies, Inc. the OKR Software and employee engagement company, is committed to ensuring the safety and security of our products, services, and customers. Please find all relevant information in this Policy and Program below.

Conduct

  • Please respect the rules set forth here or contact us if you disagree with the rules.
  • Please respect the privacy of data and make a an effort not to access or destroy another user's data.
  • Please be patient in clarifying and supporting reports and requests.
  • Please do no harm by acting for the common good through prompt reporting of all discovered vulnerabilities, and not exploit others without their permission.

Scope

This program shall only apply to data and software solutions developed and licensed by Hirebook to our customers. This program does not apply to non-service related infrastructure or our website.

Hirebook Technologies, Inc. will not engage in legal actions against individuals who submit vulnerability reports in good faith, and following the correct guidelines and procedures.

How to Submit a Vulnerability

Please submit all vulnerability reports to security@hirebook.com.

Once the report is received, we will review and investigate the vulnerability as soon as possible. We will inform you when the investigation starts and we may be in contact to gather further details. If the vulnerability is determined to require fixing, we will being the process as soon as possible.

Publication of Vulnerability

Once the vulnerability has been successfully resolved, we will disclose and publish the vulnerability to our website. If you would like to be credited for the vulnerability discovery, please let us know via email.