Responsible Reporting
Virkelig.ai aims to keep its services safe for everyone, and security is our top priority. If you believe you have found a vulnerability in Virkelig.ai, we encourage you to contact us at security@virkelig.ai. We will confirm receipt of your report on the vulnerability and strive to send you regular updates on our work to resolve the issue.
Responsible Disclosure
You should give us reasonable time to investigate and mitigate a problem you report before publicly disclosing any information about the report or sharing such information with others. You should not exploit a security flaw you discover for any reason, and avoid breaches of privacy as well as interruption or degradation of our services.
Acknowledgment
We may reward submissions that help us keep our services safe to use, provided they comply with this responsible disclosure policy. Whether a reward is offered or not is entirely at our discretion.
Scope
We appreciate being notified in case of a vulnerability, as we believe that proper configuration and hardening of all resources are important, even for open information.
Systems within the scope:
Virkelig.ai web application
Virkelig.ai API
Outside the scope:
Denial of service attacks (DoS/DDoS)
Spam or social engineering techniques
Reports from automated scanning tools.