Improve security? Report it!
If there is anything we can do to improve security, we’d love to hear from you!
VZVZ considers it crucial to provide secure and reliable services. Security plays an important role in developing and maintaining our websites and online services. Despite all care and effort, situations may arise where there is a weakness in our security.
You can help us keep our services secure, and with them, the information entrusted to us. If you believe you have found a weakness in any of our services, we are eager to work with you to resolve the situation as soon as possible to improve our security. As such, we ask that you share any such information with us immediately.
- To prevent the abuse of your findings by others, please use the following guidelines when reporting:
- Report the suspected vulnerability to the VZVZ Computer Emergency Response Team by emailing cert@vzvz.nl;
- Please provide sufficient information (e.g., a detailed description including IP addresses, logs, how to reproduce, screenshots) to enable us to process your report effectively;
- Do not actively exploit the vulnerability. Exploitation of vulnerabilities will be reported to the relevant authorities.
After you report a vulnerability, we will contact you as soon as possible, but no later than three business days, to make arrangements for a reasonable remediation period and possible coordinated publication of the vulnerability. We will treat your report in confidence and will not share your personal data with third parties without your consent. An exception to this is the police and justice department if charges are filed or a data disclosure request is submitted.
VZVZ is committed to secure and reliable communications for its customers. Your information can help us better protect the services we provide.