Coordinated Vulnerability Disclosure Statement

At GRESB the security of our systems is top priority. No matter how much effort we put into system security, there might be vulnerabilities present. If you discover a vulnerability, we would like to know about it so we can take steps to address it. We would like to ask you to help us protect our clients and our systems.

Please do the following:

Please don’t do the following:

What we promise:

This Coordinated Vulnerability Disclosure policy is based on an example written by Floor Terra on responsibledisclosure.nl and the Coordinated Vulnerability Disclosure Guideline of the NCSC.