• Home
  • Security Disclosure Policy

Security Disclosure Policy

How to report vulnerabilities responsibly

Drum and Bass UK is committed to ensuring the security and privacy of our platform, users, and data. We welcome and appreciate the efforts of security researchers and ethical hackers in identifying potential vulnerabilities.

Responsible Disclosure

If you discover a potential vulnerability, please report it responsibly to [email protected]. We ask that you do not publicly disclose the issue before we have had an opportunity to investigate and apply any necessary fixes.

Our Commitments

  • We aim to acknowledge reports within 5 working days.
  • For valid reports, we will aim to resolve issues within 30 days.
  • We will treat your report confidentially and will not take legal action if you act in good faith within this policy's scope.

Out of Scope

The following are considered out of scope:

  • Denial-of-service (DoS) attacks or brute-force testing
  • Clickjacking or issues requiring physical access
  • Social engineering or phishing of Drum and Bass UK staff or users
  • Use of automated scanning tools

Safe Harbor

We support safe harbor for security researchers. If you make a good faith effort to comply with this policy, we will not pursue legal action against you.

Newsletter

Get the Drum & Bass UK weekly bulletin

New premieres, reviews, interviews, releases, and scene updates. One email a week, no account required.