# Security Policy

We consider the security of Sniffnet a top priority.<br>
The application is developed with a **security-first approach**:
it has always been designed to **protect users' data privacy and system integrity**,
as demonstrated by [security audits](https://sniffnet.net/news/security-audit/) assessing the application safety.

But no matter how much effort we put into securing the app, there can still be **vulnerabilities** present.

***

If you discover a vulnerability, we would like to know about it so we can take steps to address it as quickly as possible.

Please do the following:

- E-mail your findings to gyulyvgc99@gmail.com
- Do not take advantage of the vulnerability or problem you have discovered
- Do not reveal the problem to others until it has been resolved
- Do provide sufficient information to reproduce the problem, so we will be able to resolve it as quickly as possible

What we promise:

- We will respond to your report within 3 business days with our evaluation of the report and an expected resolution date
- If you have followed the instructions above, we will not take any legal action against you in regard to the report
- We will handle your report with strict confidentiality, and not pass on your personal details to third parties without your permission
- We will keep you informed of the progress towards resolving the problem
- In the public information concerning the problem reported, we will give your name as the discoverer of the problem (unless you desire otherwise)
- We strive to resolve all problems as quickly as possible, and we would like to play an active role in the ultimate publication on the problem after it is resolved