September 1, 2024
Lead Partners, LLC (“we,” “our,” or “us”) values the security of our users and the integrity of our systems. We encourage responsible disclosure of vulnerabilities to help us maintain a secure environment.
If you discover a vulnerability, please report it to us immediately by emailing support@mail.refinances.com. Include as much information as possible to help us understand the issue.
Our Vulnerability Disclosure Program covers vulnerabilities in:
– refinances.com
– Associated web applications and APIs
The following are out of scope:
– Social engineering attacks (e.g., phishing)
– Physical attacks
– Denial of Service (DoS) attacks
– Do not publicly disclose the vulnerability until we have addressed it.
– Do not exploit the vulnerability beyond what is needed to prove its existence.
– Provide sufficient information for us to reproduce and fix the issue.
We will acknowledge your report within 72 hours and work diligently to address the vulnerability. We also commit to:
– Keeping you informed during the remediation process.
– Recognizing your efforts, if applicable and desired.
For any questions or concerns regarding our Vulnerability Disclosure Program, please contact us at support@mail.refinances.com.