Security Policy

Updated at: 2025-12-16

At Gaudits, we take the security of our systems and our users' data seriously. We appreciate the security research community's efforts in helping us maintain a secure platform.

Reporting a Vulnerability

If you believe you have discovered a security vulnerability in our platform, please report it to us by emailing [email protected].

Please include in your report:

  • A detailed description of the vulnerability
  • Steps to reproduce the issue
  • The potential impact of the vulnerability
  • Any proof-of-concept code (if applicable)
  • Your contact information for follow-up

Our Commitment

When you report a vulnerability to us, we commit to:

  • Acknowledge receipt of your report within 48 business hours
  • Provide an initial assessment within 5 business days
  • Keep you informed of our progress
  • Credit you for your discovery (if desired) once the issue is resolved

Scope

This policy applies to:

  • The Gaudits web application (gaudits.com)
  • Associated APIs and services

Out of Scope

The following are not eligible for this program:

  • Denial of Service (DoS/DDoS) attacks
  • Social engineering attacks
  • Physical security attacks
  • Attacks against third-party services
  • Spam or phishing attempts

Safe Harbor

We will not take legal action against security researchers who:

  • Act in good faith and follow this policy
  • Avoid privacy violations and data destruction
  • Do not exploit vulnerabilities beyond proof-of-concept
  • Report findings promptly and confidentially

Contact

For security-related inquiries: [email protected]

Preferred Languages: English, Arabic