At IZ Emporium, we take security seriously and are committed to safeguarding the information and privacy of our customers. This page outlines our security policy and provides guidance for responsible disclosure of vulnerabilities.

Responsible Disclosure Policy

We encourage security researchers to report any vulnerabilities they discover on our platform in a responsible manner. Responsible disclosure allows us to address and resolve issues promptly while minimizing potential risks to our users.

If you discover a vulnerability, please:

  • Notify us immediately by sending an email to security@izemporium.com.
  • Do not publicly disclose the vulnerability until it has been resolved.
  • Provide detailed information about the vulnerability, including steps to reproduce it.

We are committed to working with security researchers to verify, resolve, and acknowledge issues promptly.

Scope

In-Scope:

  • izemporium.com and its subdomains.
  • Public APIs hosted on izemporium.com.
  • User authentication and authorization mechanisms.
  • Payment and checkout functionality.

Out-of-Scope:

  • Third-party applications or services integrated with our platform.
  • Social engineering attacks, such as phishing.
  • Denial-of-service (DoS) attacks or brute force attacks.

Our Commitment

When you report a vulnerability to us, we commit to:

  • Responding to your initial report within 72 hours.
  • Keeping you updated on the progress of the investigation.
  • Providing a timeline for when the vulnerability will be resolved.
  • Acknowledging your contribution on our Acknowledgements page if requested.

Reporting Vulnerabilities

To report a vulnerability, please email security@izemporium.com with the following details:

  • A detailed description of the vulnerability.
  • Steps to reproduce the issue.
  • Screenshots, logs, or code snippets, if applicable.

For secure communication, use our PGP key to encrypt your message.

Acknowledgements

We value and appreciate the contributions of the security community. Researchers who responsibly disclose vulnerabilities may be acknowledged on our Acknowledgements page.

Disclaimer

  • Testing must not disrupt our services or compromise the data of other users.
  • Unauthorized access to sensitive data or systems is prohibited and may result in legal action.
  • The policy does not authorize security researchers to act as agents of IZ Emporium.
  • Business Name SEO Squad (IZ Emporium)
  • Name: IZ Emporium
  • Address Line 1: 532985 York House
  • Address Line 2: Green Lane West
  • City: Preston
  • State: Lancashire
  • ZIP Code: PR3 1NJ
  • Country: United Kingdom
  • Phone: +44 7456 261486
  • Email: Support@izemporium.com
Scroll to Top