Version 03/12/2023

Vulnerability disclosure policy

The security of our customers’ information and personal data is extremely important to Howtovisitsevilla. We strive to achieve the highest possible degree of safety. Despite our constant efforts, problems cannot be completely avoided. Therefore, if you have found any security vulnerabilities or problems, we strongly urge you to report them to us so that we can take the necessary measures as soon as possible.

How to report a problem?

For responsible disclosure, send an email describing the problem to [email protected] and indicating step-by-step how to reproduce the problem. We will get back to you as soon as possible.

In the meantime, please do not disclose vulnerabilities to third parties and do not use them for any purpose other than to demonstrate their existence. The data of legitimate users of the service must not be modified or deleted.

We will work with you to resolve the issue.

Absence of legal actions, possible collaboration and rewards

We will not take legal action against you if you have reported the problem following the responsible disclosure process.

By default, we do not pay rewards for finding bugs. However, we may offer to enter into a consulting agreement and pay you a reward for finding and reporting a serious problem.