Vulnerability Disclosure Policy
Please read this disclosure policy fully before reporting any vulnerabilities. This policy applies only to original, unreported vulnerabilities; not vulnerabilities already discovered internally and/or externally. Volumetric vulnerabilities are not covered by this policy.
Please be aware Otter Products EMEA Unlimited and its affiliates do NOT authorize any security research, testing or interactions that could be considered an attack on any of our websites or systems.
It is not currently possible to offer a paid bug bounty program.
It is not currently possible to offer a paid bug bounty program, but we will do our best to show our appreciation to any security researchers who are able to assist us with the security of our websites.
If you believe you have discovered a vulnerability (in line with the scope above), please submit it via bugs@otterproducts.com.
After receiving your report, we will endeavor to acknowledge it in a reasonable amount of time and will work to fix the fault as soon as possible.
Otter Products EMEA Unlimited and its affiliates recognize the efforts of these individuals in helping secure our online presence:
- Sumit Tiwari
- Mridul Vohra
- Zain Iqbal (Ethical Hacker)
- Sundarr Insa
- Kunal Mhaske